๐ง๐ช
voormedia
2026-07-12 06:50:16
(4 hours ago)
Accessed trap at '/.git/HEAD'
Web App Attack
๐ญ๐บ
bcsaba
2026-07-12 05:57:21
(5 hours ago)
Probing for .git:
140.248.75.55 - - [12/Jul/2026:07:57:19 +0200] "GET /.git/HEAD HTTP/1.1" 403 146 " ...
show more
Probing for .git:
140.248.75.55 - - [12/Jul/2026:07:57:19 +0200] "GET /.git/HEAD HTTP/1.1" 403 146 "-" "git/2.39.2"
show less
Web App Attack
๐ฟ๐ฆ
antman
2026-07-12 01:40:53
(10 hours ago)
csagent: score 20.5: secrets grab x2, 404 noise floor x2; 1 domain(s) in 0s
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-10 16:27:11
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 12:27:06.870206 2026] [security2:error] [pid 26224:tid 26224] [client 140.248.75.55:17960] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.cyberviews.club"] [uri "/.git/config"] [unique_id "alEdWr6gQWuQMo8u4SIJsAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-10 07:08:55
(2 days ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-09 17:28:07
(2 days ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-08 20:32:54
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 16:32:47.921215 2026] [security2:error] [pid 7529:tid 7529] [client 140.248.75.55:52134] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.crafft.cloudex.link"] [uri "/.git/HEAD"] [unique_id "ak6z71xfxuTZugktQDEXkAAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 12:52:36
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 08:52:28.021826 2026] [security2:error] [pid 29675:tid 29675] [client 140.248.75.55:20818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deltasouls.darrenj.com"] [uri "/.git/HEAD"] [unique_id "ak5IDGKWAjF-DX3TA5G7lgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 02:38:16
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 22:38:12.070315 2026] [security2:error] [pid 17128:tid 17128] [client 140.248.75.55:35764] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.jmwilliamsrealty.com"] [uri "/.git/index"] [unique_id "ak24FF8-aUypArwRQT_JNgAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 20:52:39
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 16:52:35.383461 2026] [security2:error] [pid 8775:tid 8780] [client 140.248.75.55:62210] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ahmedalbanna.com"] [uri "/.git/config"] [unique_id "ak1nE5ET_DOARUukr6bDbQAAAQM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-07 09:28:42
(5 days ago)
Try to access /.git/config
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 01:55:39
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 21:55:32.501854 2026] [security2:error] [pid 31560:tid 31567] [client 140.248.75.55:38622] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "a2zlns.com"] [uri "/.git/HEAD"] [unique_id "akxclEGMuiNlVjNGZs17_QAAAIU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-06 21:46:44
(5 days ago)
Try to connect to Port_Scan_443_stealth
Port Scan
๐ฉ๐ช
piticu iuli
2026-07-06 07:09:53
(6 days ago)
(mod_security) mod_security triggered on hostname [redacted] 140.248.75.55 (DE/Germany/-)
SQL Injection
๐ฉ๐ช
Bedios GmbH
2026-07-06 00:53:09
(6 days ago)
Login credentials theft attempt
Hacking