๐บ๐ธ
TPI-Abuse
2026-07-06 23:33:32
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 19:33:27.899589 2026] [security2:error] [pid 1794:tid 1794] [client 140.248.75.127:18552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3beeze.bridgital.com"] [uri "/.git/HEAD"] [unique_id "akw7R25QsQbxXoGXn9tiqAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 06:35:16
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 02:35:11.722077 2026] [security2:error] [pid 21280:tid 21425] [client 140.248.75.127:48422] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "advometric.com"] [uri "/.git/config"] [unique_id "aktMn-vp2nToCujmlFehZQAAAFM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-07-06 01:12:34
(1 day ago)
Unauthorized access to webpage admin
Web App Attack
Anonymous
2026-07-05 17:12:49
(1 day ago)
140.248.75.127 - - [05/Jul/2026:17:12:49 +0000] "GET /.git/config HTTP/1.1" 404 6996 "-" "git/2.39.2 ...
show more
140.248.75.127 - - [05/Jul/2026:17:12:49 +0000] "GET /.git/config HTTP/1.1" 404 6996 "-" "git/2.39.2"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 07:46:36
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 03:46:24.565598 2026] [security2:error] [pid 14126:tid 14145] [client 140.248.75.127:33408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.peapage.productions"] [uri "/.git/config"] [unique_id "akoL0OD2nw7Th2bwvNhb2gAAAMc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-05 01:03:57
(2 days ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐ฎ๐ฉ
Burayot
2026-07-04 23:28:58
(2 days ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.127 (DE/Germany/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.127 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 02:31:07
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 22:30:59.725209 2026] [security2:error] [pid 9063:tid 9063] [client 140.248.75.127:59150] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.georgelaceysales.com"] [uri "/.git/HEAD"] [unique_id "akhwY-0gBioPcBaB__VLyQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 00:37:51
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 20:37:44.293409 2026] [security2:error] [pid 3305:tid 3305] [client 140.248.75.127:12652] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.scswat.org"] [uri "/.git/HEAD"] [unique_id "akhV2N_MtlAy6h8UP4VG_wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-07-03 21:56:18
(3 days ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-03 03:47:11
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 23:47:08.110727 2026] [security2:error] [pid 22956:tid 22956] [client 140.248.75.127:15956] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.goatedlottosecrets.com"] [uri "/.git/config"] [unique_id "akcwvEqknZA8cEzPb0YpfAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-03 03:01:24
(4 days ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.248.75.127 (GB/United Kingdom/-): ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.248.75.127 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐บ๐ธ
mccsoft.io
2026-07-02 03:53:03
(5 days ago)
Web application attack / vulnerability scanning. Source sent 4 HTTP request(s) (2 distinct paths) to ...
show more
Web application attack / vulnerability scanning. Source sent 4 HTTP request(s) (2 distinct paths) to our public nginx web server on TCP 80/443, probing blocked/sensitive paths; all returned HTTP 444 (connection closed by security rule, jail nginx-444). Sample requests: GET /.git/config | GET /.git/HEAD. User-Agent: git/2.39.2. Observed 2026-07-02 03:52:47 UTC. TCP handshake completed (requests fully received). Categories: Web App Attack / Bad Web Bot.
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-01 09:00:23
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 03:59:58.347868 2026] [security2:error] [pid 31492:tid 31492] [client 140.248.75.127:19394] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/first-network/.env"] [unique_id "aX8WDkGG91zzg3wv3fGARgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack