๐ฉ๐ช
Marc
2026-07-06 19:52:16
(2 hours ago)
140.248.75.92 - - [06/Jul/2026:21:52:15 +0200] "GET /.git/config HTTP/1.1" 404 3226 "-" "git/2.39.2" ...
show more
140.248.75.92 - - [06/Jul/2026:21:52:15 +0200] "GET /.git/config HTTP/1.1" 404 3226 "-" "git/2.39.2" 140.248.75.92 - - [06/Jul/2026:21:52:15 +0200] "GET /.git/HEAD HTTP/1.1" 404 650 "-" "git/2.39.2" 140.248.75.92 - - [06/Jul/2026:21:52:15 +0200] "GET /.git/config HTTP/1.1" 404 3227 "-" "git/2.39.2"
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-06 05:56:14
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 01:56:08.514687 2026] [security2:error] [pid 7578:tid 7578] [client 140.248.75.92:22444] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2massociatesllc.com"] [uri "/.git/HEAD"] [unique_id "aktDeCHKyeMe9LY6ICRiFAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 04:23:37
(17 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 00:23:33.453716 2026] [security2:error] [pid 20288:tid 20288] [client 140.248.75.92:60766] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.wies.name"] [uri "/.git/HEAD"] [unique_id "akstxWYeQ9ioXVs8n95o6gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ecs.ge
2026-07-06 01:50:36
(20 hours ago)
Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.
Web App Attack
Hacking
๐ฉ๐ช
DocNetzwerk
2026-07-06 01:03:12
(21 hours ago)
(mod_security) mod_security triggered on hostname [redacted] 140.248.75.92 (DE/Germany/-)
SQL Injection
๐ธ๐ช
nekopavel
2026-07-05 23:58:06
(22 hours ago)
140.248.75.92 - - [06/Jul/2026:01:58:04 +0200]"GET /.git/HEAD HTTP/1.1" 404 1456"-" wildcard.pavel.g ...
show more
140.248.75.92 - - [06/Jul/2026:01:58:04 +0200]"GET /.git/HEAD HTTP/1.1" 404 1456"-" wildcard.pavel.gg "git/2.39.2""0.000" "-""Frankfurt am Main" "DE"
140.248.75.92 - - [06/Jul/2026:01:58:04 +0200]"GET /.git/config HTTP/1.1" 404 1456"-" wildcard.pavel.gg "git/2.39.2""0.000" "-""Frankfurt am Main" "DE"
140.248.75.92 - - [06/Jul/2026:01:58:04 +0200]"GET /.git/HEAD HTTP/1.1" 404 1456"-" www.wildcard.pavel.gg "git/2.39.2""0.000" "-""Frankfurt am Main" "DE"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:15:51
(23 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:15:45.924509 2026] [security2:error] [pid 9943:tid 9943] [client 140.248.75.92:62176] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.daveewalker.bz"] [uri "/.git/HEAD"] [unique_id "akrXkToaC9eujUrsC7VRDgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-05 01:24:04
(1 day ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-04 05:17:53
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 01:17:46.445618 2026] [security2:error] [pid 13868:tid 13868] [client 140.248.75.92:17752] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.shiner.org"] [uri "/.git/HEAD"] [unique_id "akiXeuRHpbLL9c7b9jStwwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
paulshipley.com.au
2026-07-04 00:00:34
(2 days ago)
[Sat Jul 04 10:00:33.291116 2026] [security2:error] [pid 710799] [client 140.248.75.92:43954] [clien ...
show more
[Sat Jul 04 10:00:33.291116 2026] [security2:error] [pid 710799] [client 140.248.75.92:43954] [client 140.248.75.92] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/.git/HEAD"] [unique_id "akhNIUZu7WnitQe80ZU7JQAAAAQ"]
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 20:29:06
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 16:29:03.045328 2026] [security2:error] [pid 14238:tid 14249] [client 140.248.75.92:35954] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.michaelrandon.com"] [uri "/.git/config"] [unique_id "akgbj8qxViKRajb_58nstQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 03:58:10
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 23:58:05.261168 2026] [security2:error] [pid 27191:tid 27191] [client 140.248.75.92:32200] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.campnecon.com"] [uri "/.git/HEAD"] [unique_id "akczTaN5WmcnbeRBc5zGsAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Ba-Yu
2026-07-03 01:29:47
(3 days ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 20:47:35
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 16:47:27.057299 2026] [security2:error] [pid 6827:tid 6827] [client 140.248.75.92:28178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.wwts.io"] [uri "/.git/config"] [unique_id "akbOX8FWA9pGxUvGVr603AAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-27 15:39:01
(1 week ago)
Apache CVE-2021-41773 exploitation attempt
Web App Attack