๐บ๐ธ
TPI-Abuse
2026-07-07 02:52:14
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 22:52:08.273003 2026] [security2:error] [pid 28689:tid 28689] [client 140.248.75.90:12542] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.biblioteca.navarrete.ws"] [uri "/.git/config"] [unique_id "akxp2B62kQNkJbKP0V9urwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
OptimusGO
2026-07-06 19:25:33
(11 hours ago)
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Time ...
show more
Malicious activity detected: web_attack
Server: commstackbc (185.127.18.66)
Attack: web_attack
Timestamp: 2026-07-06 20:25:33 UTC
Log evidence:
140.248.75.90 - - [06/Jul/2026:20:25:32 +0100] "GET /.git/HEAD HTTP/1.1" 403 146 "-" "git/2.39.2"
140.248.75.90 - - [06/Jul/2026:20:25:32 +0100] "GET /.git/config HTTP/1.1" 403 146 "-" "git/2.39.2"
140.248.75.90 - - [06/Jul/2026:20:25:32 +0100] "GET /.git/config HTTP/1.1" 301 162 "-" "git/2.39.2"
show less
Port Scan
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-06 15:00:59
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 11:00:52.623223 2026] [security2:error] [pid 20872:tid 20872] [client 140.248.75.90:9200] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "act-research.com"] [uri "/.git/HEAD"] [unique_id "akvDJMWibOKbSQLO2Hm_kgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-07-06 01:16:19
(1 day ago)
Unauthorized access to webpage admin
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 21:41:16
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 17:41:11.283785 2026] [security2:error] [pid 7210:tid 7237] [client 140.248.75.90:43994] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seracon.com.ec"] [uri "/.git/HEAD"] [unique_id "akrPd1Rvw7HmjF43Bo8_ZQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 05:49:18
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 01:49:12.546868 2026] [security2:error] [pid 14129:tid 14259] [client 140.248.75.90:61380] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ramona.town"] [uri "/.git/config"] [unique_id "aknwWGhbLhQetQ-JmSa5vQAAAdA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-05 01:03:57
(2 days ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐ซ๐ฎ
inlink.ltd
2026-07-04 08:13:47
(2 days ago)
dot file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 07:28:12
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 03:28:07.055690 2026] [security2:error] [pid 16188:tid 16188] [client 140.248.75.90:63896] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.cossey.me"] [uri "/.git/HEAD"] [unique_id "aki2B85O00evMP3OUIXC7wAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-03 02:41:13
(4 days ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.90 (DE/Germany/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.90 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
nyt
2026-07-02 23:30:45
(4 days ago)
Sensitive File Probe, Accessing .git directory may indicate probing activity
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-01 11:22:03
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 07:21:44.497460 2026] [security2:error] [pid 11620:tid 11620] [client 140.248.75.90:12394] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/.env.development"] [unique_id "afSMyFMZ9kqi2uXteyJcewAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-23 19:06:30
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 15:06:14.869750 2026] [security2:error] [pid 23810:tid 23810] [client 140.248.75.90:54000] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/web/.env"] [unique_id "acGPJudzFS15VCJjhHjSLAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-01 08:54:53
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 03:54:34.110275 2026] [security2:error] [pid 20716:tid 20716] [client 140.248.75.90:59784] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/.env.development"] [unique_id "aX8UyhEMI2GL7MbwMtZpEQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack