๐บ๐ธ
TPI-Abuse
2026-07-14 05:18:42
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 01:18:37.847801 2026] [security2:error] [pid 21757:tid 21800] [client 140.248.75.103:14222] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gotogps.com"] [uri "/.git/config"] [unique_id "alXGrRbaHxzaUEh4K2W6twAAAFA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 03:44:11
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 23:44:03.873590 2026] [security2:error] [pid 20450:tid 20450] [client 140.248.75.103:25734] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.senji.me"] [uri "/.git/config"] [unique_id "alWwg1xRcMnTHEUiQLvYEQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
iNetWorker
2026-07-13 10:14:44
(22 hours ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 05:39:16
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 01:39:09.231212 2026] [security2:error] [pid 9568:tid 9568] [client 140.248.75.103:5398] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lazymanvegan.com"] [uri "/.git/config"] [unique_id "alR5_ZWF97EC1Bicl__I0AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ด
jad-abuse
2026-07-11 14:28:44
(2 days ago)
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_expos ...
show more
ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 2 hits.
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 06:33:19
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 02:33:15.593053 2026] [security2:error] [pid 5885:tid 5885] [client 140.248.75.103:18124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cs-mall.com"] [uri "/.git/config"] [unique_id "alHjq9ovM7zmIxd8xHnN5QAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
MPL
2026-07-10 16:35:01
(3 days ago)
tcp/443 (4 or more attempts)
Port Scan
๐บ๐ธ
TPI-Abuse
2026-07-10 03:27:14
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 23:27:11.613432 2026] [security2:error] [pid 18999:tid 18999] [client 140.248.75.103:38250] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dailybeautysupply.com"] [uri "/.git/HEAD"] [unique_id "alBmj6DGnbf2YIAu8fteTgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-09 17:28:07
(4 days ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-09 05:56:10
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 01:56:04.659990 2026] [security2:error] [pid 14555:tid 14555] [client 140.248.75.103:35812] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dcwenger.com"] [uri "/.git/config"] [unique_id "ak839M2ytre_4bJZM6JgYwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 10:13:49
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:13:43.907482 2026] [security2:error] [pid 21989:tid 21989] [client 140.248.75.103:30844] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.badritual.art"] [uri "/.git/config"] [unique_id "ak4i17wGoGbmqR9WCVlQ0gAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-07-08 08:55:11
(5 days ago)
[WedJul0810:55:05.8536592026][security2:error][pid3678563:tid3678763][client140.248.75.103:0]ModSecu ...
show more
[WedJul0810:55:05.8536592026][security2:error][pid3678563:tid3678763][client140.248.75.103:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"cybertelgroup.com\"][uri\"/.git/config\"][unique_id\"ak4QaV_1Fwf9qpPVDdyKmAAAAMA\"]
show less
Hacking
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-07-07 21:36:24
(6 days ago)
dot file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 20:57:18
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 16:57:12.549959 2026] [security2:error] [pid 14151:tid 14164] [client 140.248.75.103:65348] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.dcmproductionsgroup.com"] [uri "/.git/config"] [unique_id "ak1oKHQTIegCjllalbQRtwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
raph
2026-07-06 11:19:52
(1 week ago)
[DOT FILES] crawler *.env*, .git*, .config*, etc.
Bad Web Bot
Web App Attack