๐บ๐ธ
MPL
2026-07-10 16:26:59
(3 hours ago)
tcp/443 (8 or more attempts)
Port Scan
๐ณ๐ฟ
Antinson
2026-07-09 17:28:07
(1 day ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-09 05:43:57
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 01:43:54.038116 2026] [security2:error] [pid 10945:tid 10945] [client 140.248.75.134:13990] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dancingorchidvillas.c-w-a-m.com"] [uri "/.git/HEAD"] [unique_id "ak81Go32EZghvMemQmURmAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ฌ
Stoyko Stoykov
2026-07-08 20:07:38
(2 days ago)
140.248.75.134 - - [08/Jul/2026:23:07:37 +0300] "GET /.git/config HTTP/1.1" 404 0 "-" "git/2.39.2"
. ...
show more
140.248.75.134 - - [08/Jul/2026:23:07:37 +0300] "GET /.git/config HTTP/1.1" 404 0 "-" "git/2.39.2"
...
show less
Hacking
Web App Attack
๐ณ๐ฑ
javierin
2026-07-08 14:27:51
(2 days ago)
140.248.75.134 - crianzahoy.javierin.com - - [08/Jul/2026:14:27:50 +0000] "GET /.git/HEAD HTTP/1.1" ...
show more
140.248.75.134 - crianzahoy.javierin.com - - [08/Jul/2026:14:27:50 +0000] "GET /.git/HEAD HTTP/1.1" 302 5 "-" "git/2.39.2"
140.248.75.134 - crianzahoy.javierin.com - - [08/Jul/2026:14:27:50 +0000] "GET /.git/config HTTP/1.1" 302 5 "-" "git/2.39.2"
...
show less
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-08 11:14:18
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 07:14:15.546774 2026] [security2:error] [pid 1299:tid 1299] [client 140.248.75.134:12670] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.sansavin.com.hk"] [uri "/.git/HEAD"] [unique_id "ak4xBwGyYYxGAaD6qG7sTQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-08 07:39:42
(2 days ago)
git/env leak probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 04:59:14
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 00:59:09.939937 2026] [security2:error] [pid 4587:tid 4587] [client 140.248.75.134:18002] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "curryfirm.com"] [uri "/.git/HEAD"] [unique_id "ak3ZHQNDF1WZi8ICaaASCAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 23:37:47
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 19:37:40.720067 2026] [security2:error] [pid 22025:tid 22025] [client 140.248.75.134:60592] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.bridging-lives.com"] [uri "/.git/HEAD"] [unique_id "ak2NxHfpgd4IUfaYNjcjiQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 23:04:12
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 19:04:07.343018 2026] [security2:error] [pid 12024:tid 12024] [client 140.248.75.134:32970] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.desertrosedoves.com"] [uri "/.git/config"] [unique_id "ak2F5989ekOenW8oiyFyqwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 21:09:27
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 17:09:24.389224 2026] [security2:error] [pid 20938:tid 20938] [client 140.248.75.134:20136] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.bigskyprints.com"] [uri "/.git/HEAD"] [unique_id "ak1rBPtUTsCJwFSyCOywlwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 02:48:54
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 22:48:47.335921 2026] [security2:error] [pid 1621:tid 1621] [client 140.248.75.134:31700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.warnock.ws"] [uri "/.git/config"] [unique_id "akxpD8hQjj-PjcF20-CxSAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-07-06 07:35:51
(4 days ago)
dot file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 04:26:56
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 00:26:51.931568 2026] [security2:error] [pid 15246:tid 15246] [client 140.248.75.134:65332] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.dimitri.daras.name"] [uri "/.git/HEAD"] [unique_id "aksui7OZbcLCJgK67q-EcgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ช
nekopavel
2026-07-05 23:29:29
(4 days ago)
140.248.75.134 - - [06/Jul/2026:01:29:28 +0200]"GET /.git/config HTTP/1.1" 301 0"-" neko.chat "git/2 ...
show more
140.248.75.134 - - [06/Jul/2026:01:29:28 +0200]"GET /.git/config HTTP/1.1" 301 0"-" neko.chat "git/2.39.2""0.006" "0.004""Frankfurt am Main" "DE"
140.248.75.134 - - [06/Jul/2026:01:29:28 +0200]"GET /.git/HEAD HTTP/1.1" 301 0"-" neko.chat "git/2.39.2""0.005" "0.003""Frankfurt am Main" "DE"
140.248.75.134 - - [06/Jul/2026:01:29:28 +0200]"GET /.git/HEAD HTTP/1.1" 404 19"-" www.neko.chat "git/2.39.2""0.005" "0.004""Frankfurt am Main" "DE"
...
show less
Hacking
Bad Web Bot
Web App Attack