๐ฟ๐ฆ
conure
2026-07-18 21:29:03
(7 hours ago)
csagent: score 20.0: secrets grab x2; 1 domain(s) in 0s
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 21:02:42
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 17:02:39.213886 2026] [security2:error] [pid 726244:tid 726244] [client 140.248.75.125:32374] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "platinumkissband.com"] [uri "/.git/HEAD"] [unique_id "alvp73b1rUzQzDZitT-ftgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 01:30:04
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 13:08:39
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:08:36.318361 2026] [security2:error] [pid 2653:tid 2653] [client 140.248.75.125:23198] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.wildcroc.us"] [uri "/.git/config"] [unique_id "aljX1L9NH_1dURX2PYEhpgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 10:45:49
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 06:45:45.736161 2026] [security2:error] [pid 32183:tid 32183] [client 140.248.75.125:18686] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.rcto.us"] [uri "/.git/HEAD"] [unique_id "ali2Wcfak6vgBV399DvPgwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:59:30
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:59:27.439194 2026] [security2:error] [pid 31531:tid 31531] [client 140.248.75.125:38138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.hker.org"] [uri "/.git/config"] [unique_id "alhlL0NybA5OablB2MyaoAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฟ๐ฆ
conure
2026-07-16 04:29:04
(3 days ago)
csagent: score 20.5: secrets grab x2, 404 noise floor x2; 1 domain(s) in 0s
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 07:51:10
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 03:51:02.876455 2026] [security2:error] [pid 31095:tid 31095] [client 140.248.75.125:36448] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.luxandunion.com"] [uri "/.git/HEAD"] [unique_id "alc75g_VCmcQ4knsv5c6kQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 04:41:39
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 00:41:31.906646 2026] [security2:error] [pid 6544:tid 6544] [client 140.248.75.125:38160] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.1st-pick.com"] [uri "/.git/config"] [unique_id "alW9-z-F0nxr2DnLV5Z5NAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-13 23:22:08
(5 days ago)
136 requests with url.path *.git/*
Brute-Force
Bad Web Bot
๐ฎ๐ฉ
Burayot
2026-07-13 21:09:19
(5 days ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.125 (DE/Germany/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.125 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐ซ๐ท
masterguru
2026-07-13 21:06:27
(5 days ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 13:18:11
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 09:18:05.405262 2026] [security2:error] [pid 12641:tid 12641] [client 140.248.75.125:40496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jamiesbballpool.com"] [uri "/.git/config"] [unique_id "alTljY2mM3eZFZ5MXuvs6AAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 07:39:16
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 03:39:10.345823 2026] [security2:error] [pid 13147:tid 13147] [client 140.248.75.125:3824] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lightupaustralia.org.tckgbookkeeping.biz"] [uri "/.git/config"] [unique_id "alSWHs6LGW06uI9-mCsB8AAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 04:42:54
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:42:51.136751 2026] [security2:error] [pid 32519:tid 32519] [client 140.248.75.125:65280] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pinehillwineworks.com"] [uri "/.git/HEAD"] [unique_id "alRsy3sdyz_hqm1buvdCgQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack