Anonymous
2026-07-13 06:49:22
(18 hours ago)
Try to connect to Port_Scan_443_stealth
Port Scan
๐บ๐ธ
TPI-Abuse
2026-07-12 04:08:56
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 00:08:52.848780 2026] [security2:error] [pid 28181:tid 28181] [client 140.248.75.20:35666] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eaglejames.disio.com"] [uri "/.git/config"] [unique_id "alMTVJDR-KLUbqQjLfUv_QAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 02:28:50
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 22:28:47.103743 2026] [security2:error] [pid 9604:tid 9604] [client 140.248.75.20:39822] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "doreenkimura.com"] [uri "/.git/HEAD"] [unique_id "alL73xOYeW--TLYaG8P7lwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 01:06:34
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 21:06:26.789335 2026] [security2:error] [pid 31206:tid 31206] [client 140.248.75.20:48286] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "asermaq.cl"] [uri "/.git/HEAD"] [unique_id "alGXEqX-xmdCuW1A_D4lvwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-07-10 01:52:11
(3 days ago)
[FriJul1003:52:07.0285492026][security2:error][pid3209122:tid3209308][client140.248.75.20:0]ModSecur ...
show more
[FriJul1003:52:07.0285492026][security2:error][pid3209122:tid3209308][client140.248.75.20:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"dc-graphicart.com\"][uri\"/.git/HEAD\"][unique_id\"alBQR5K2ozuuvnmgm_GVcQAAARU\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 02:16:40
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 22:16:35.779508 2026] [security2:error] [pid 13740:tid 13740] [client 140.248.75.20:15368] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dhingra.com"] [uri "/.git/config"] [unique_id "ak8Eg6uQOGLCyhlOwVF1lAAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-07 11:24:06
(6 days ago)
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 140.248.75.20 (DE/Germany/-): 1 in t ...
show more
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 140.248.75.20 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-07 09:31:30
(6 days ago)
Try to access /.git/HEAD
Web App Attack
Anonymous
2026-07-05 05:06:05
(1 week ago)
Trying to access config files
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-05 01:03:57
(1 week ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-04 07:24:28
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 03:24:22.417985 2026] [security2:error] [pid 3511:tid 3511] [client 140.248.75.20:17194] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.imagineyourphotos.com"] [uri "/.git/config"] [unique_id "aki1JsAziLlQeHAcEu9UBQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-03 00:06:15
(1 week ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.20 (DE/Germany/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.20 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 23:23:48
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 19:23:44.107497 2026] [security2:error] [pid 10795:tid 10795] [client 140.248.75.20:44720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.vffv.com"] [uri "/.git/config"] [unique_id "akbzAN-fc9KDEY46OuySSgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-03 18:34:20
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 14:34:10.248301 2026] [security2:error] [pid 26467:tid 26467] [client 140.248.75.20:12274] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/examples/web/.env"] [unique_id "afeVIpTnzX_xt7u33PoCLAAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-23 19:18:04
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 15:17:46.092122 2026] [security2:error] [pid 9822:tid 9822] [client 140.248.75.20:61956] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/kibana/.env"] [unique_id "acGR2hRcqssPp6vgL-nCYwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack