๐ฎ๐น
CoreTech srl
2026-07-17 07:33:57
(8 hours ago)
cloudlinux2 fail2ban: 2026-07-17 09:29:30,242 fail2ban.filter [1598]: INFO [plesk-modsecu ...
show more
cloudlinux2 fail2ban: 2026-07-17 09:29:30,242 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 172.111.80.164 - 2026-07-17 09:29:30cloudlinux2 fail2ban: 2026-07-17 09:29:30,252 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 172.111.80.164 - 2026-07-17 09:29:30cloudlinux2 fail2ban: 2026-07-17 09:29:58,950 fail2ban.filter [1598]: INFO [plesk-wordpress] Found 216.24.210.71 - 2026-07-17 09:29:58cloudlinux2 fail2ban: 2026-07-17 09:30:03,021 fail2ban.filter [1598]: INFO [plesk-wordpress] Found 216.24.210.71 - 2026-07-17 09:30:02cloudlinux2 fail2ban: 2026-07-17 09:30:30,648 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.98 - 2026-07-17 09:30:30cloudlinux2 fail2ban: 2026-07-17 09:30:30,637 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.98 - 2026-07-17 09:30:30cloudlinux2 fail2ban: 2026-07-17 09:30:59,514 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.57 - 2026-07-17 09:30
show less
Web App Attack
๐ฌ๐ง
consul.to
2026-07-17 07:02:49
(8 hours ago)
Web attack/malicious scanning detected
Web App Attack
๐ฎ๐น
CoreTech srl
2026-07-17 05:08:56
(10 hours ago)
cloudlinux2 fail2ban: 2026-07-17 07:04:14,105 fail2ban.actions [1598]: NOTICE [recidive] Unb ...
show more
cloudlinux2 fail2ban: 2026-07-17 07:04:14,105 fail2ban.actions [1598]: NOTICE [recidive] Unban 104.28.158.56cloudlinux2 fail2ban: 2026-07-17 07:04:43,845 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 38.224.232.76 - 2026-07-17 07:04:43cloudlinux2 fail2ban: 2026-07-17 07:04:45,467 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 119.152.45.219 - 2026-07-17 07:04:45cloudlinux2 fail2ban: 2026-07-17 07:04:53,256 fail2ban.filter [1598]: INFO [plesk-wordpress] Found 37.140.223.195 - 2026-07-17 07:04:52cloudlinux2 fail2ban: 2026-07-17 07:04:58,174 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.57 - 2026-07-17 07:04:58cloudlinux2 fail2ban: 2026-07-17 07:04:57,404 fail2ban.filter [1598]: INFO [plesk-wordpress] Found 37.140.223.195 - 2026-07-17 07:04:56cloudlinux2 fail2ban: 2026-07-17 07:04:58,188 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.57 - 2026-07-17 07:04:58cloudlinux2 fail2ban: 2026-
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 02:57:47
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 22:57:42.784617 2026] [security2:error] [pid 30727:tid 30727] [client 140.248.75.57:51918] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "natesupport.com"] [uri "/.git/config"] [unique_id "almaJrn-AtrYs2n1FmsJNwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 01:25:04
(14 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐จ๐ญ
4server
2026-07-17 01:04:08
(14 hours ago)
[FriJul1703:04:02.6152082026][security2:error][pid2074617:tid2075007][client140.248.75.57:0]ModSecur ...
show more
[FriJul1703:04:02.6152082026][security2:error][pid2074617:tid2075007][client140.248.75.57:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"autodiscover.labaita-lanzo.it\"][uri\"/.git/HEAD\"][unique_id\"all_gn045l4UwtH9XO21WQAAAVg\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 10:10:04
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 06:09:58.644393 2026] [security2:error] [pid 17713:tid 17713] [client 140.248.75.57:49618] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.oxford-gliding-club.co.uk"] [uri "/.git/HEAD"] [unique_id "alit9r0a1ZSkqRXNltCGXAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 05:44:17
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:44:13.261291 2026] [security2:error] [pid 19425:tid 19425] [client 140.248.75.57:36466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ralphharris.org"] [uri "/.git/config"] [unique_id "alhvrTj5adj8cRhfFA29lAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 05:23:45
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:23:38.307213 2026] [security2:error] [pid 2300553:tid 2300553] [client 140.248.75.57:36420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.dc406.org"] [uri "/.git/config"] [unique_id "alhq2jfU7IhGyWYV3uT9GgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:23:10
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:23:05.443296 2026] [security2:error] [pid 13434:tid 13434] [client 140.248.75.57:12770] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.lejzerowicz.org"] [uri "/.git/HEAD"] [unique_id "alhcqRuo7PCOfaHUKzM8YwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:06:24
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:06:19.841807 2026] [security2:error] [pid 14262:tid 14262] [client 140.248.75.57:45944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.aokatheists.org"] [uri "/.git/config"] [unique_id "alhYu3DEedVp79_C2jT45gAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:16:23
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:16:19.393671 2026] [security2:error] [pid 4097:tid 4097] [client 140.248.75.57:30574] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.cipcug.org"] [uri "/.git/config"] [unique_id "alg-83ERUtStkKNIf7nBjQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 15:42:11
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 11:42:08.073912 2026] [security2:error] [pid 3129:tid 3129] [client 140.248.75.57:17740] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kcmastercleaners.com.topgunsecurityservice.com"] [uri "/.git/HEAD"] [unique_id "aleqUAIiIWNQuSzesvuomgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 06:52:12
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 02:52:07.874097 2026] [security2:error] [pid 7277:tid 7277] [client 140.248.75.57:59632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nealandmichaeledesign.com"] [uri "/.git/config"] [unique_id "alcuFzhJCRwc0SGFDX3ZDQAAAC4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 19:25:05
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 15:24:59.972651 2026] [security2:error] [pid 12888:tid 12888] [client 140.248.75.57:48850] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vitaminpolis.vittariadesign.com"] [uri "/.git/HEAD"] [unique_id "alU7i-c7tel9WfdqIx2NdQAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack