๐ฉ๐ช
4server
2026-07-18 03:07:04
(16 hours ago)
[SatJul1805:07:01.1488652026][security2:error][pid2314252:tid2314263][client212.253.95.234:0]ModSecu ...
show more
[SatJul1805:07:01.1488652026][security2:error][pid2314252:tid2314263][client212.253.95.234:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.10\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"noleggi.ch\"][uri\"/.git/config\"][unique_id\"alrt1Xg8-O7cO1z-MC6tAAAAAMg\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 17:33:46
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 13:33:22.157263 2026] [security2:error] [pid 14506:tid 14506] [client 212.253.95.234:51806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cbcfargo.com"] [uri "/.git/config"] [unique_id "alkV4h1uQGNNG_BOLF4_TwAAAEE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 15:17:47
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 11:17:39.751124 2026] [security2:error] [pid 14302:tid 14302] [client 212.253.95.234:32834] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chalet-4saisons.com"] [uri "/.git/config"] [unique_id "alj2E0QRceTJDcMl6hx6zAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 14:04:30
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 10:04:24.992856 2026] [security2:error] [pid 2941245:tid 2941245] [client 212.253.95.234:35514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "123clearmyticket.com"] [uri "/.git/config"] [unique_id "aljk6PqbAfpy3CI_8qU77wAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 12:09:11
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 08:09:03.424031 2026] [security2:error] [pid 28047:tid 28047] [client 212.253.95.234:42370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fynebutts.postermodelsworldwideinc.com"] [uri "/.git/config"] [unique_id "aljJ36bQ9Mo3F2G2duaY2AAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 09:37:30
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 05:37:25.630532 2026] [security2:error] [pid 24129:tid 24129] [client 212.253.95.234:32778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "applemaccomputerconsulting.com"] [uri "/.git/config"] [unique_id "alimVVjm5V2cFMyfTLfsBwAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 01:37:59
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 21:37:52.435896 2026] [security2:error] [pid 3339849:tid 3339849] [client 212.253.95.234:35306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "billhoy.com"] [uri "/.git/config"] [unique_id "alg18DoHy45QB0WXZ3jy7QAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
4server
2026-07-16 01:20:11
(2 days ago)
[ThuJul1603:20:08.6543732026][security2:error][pid3836981:tid3837097][client212.253.95.234:0]ModSecu ...
show more
[ThuJul1603:20:08.6543732026][security2:error][pid3836981:tid3837097][client212.253.95.234:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"cpfacilityservices.ch\"][uri\"/.git/config\"][unique_id\"algxyBR2BKdxTw33zdhmcwAAAlE\"]
show less
Port Scan
Brute-Force
Web App Attack
๐ฉ๐ช
Trueforce Threat Report
2026-07-15 14:58:33
(3 days ago)
Automated report, trolling for resource vulnerabilities
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 07:33:16
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 03:33:08.271165 2026] [security2:error] [pid 21801:tid 21801] [client 212.253.95.234:39358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "secureonebank.net"] [uri "/.git/config"] [unique_id "alc3tDg-aoLQwUBns43-7gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 06:23:21
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 02:23:16.542840 2026] [security2:error] [pid 12958:tid 12958] [client 212.253.95.234:34376] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.hills-tax.willowbrookins.com"] [uri "/.git/config"] [unique_id "alcnVLoKg0wTwe2eIFYtogAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-14 19:44:14
(3 days ago)
Try to access /.git/config
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 14:56:55
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 10:56:50.037701 2026] [security2:error] [pid 1565:tid 1565] [client 212.253.95.234:54900] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bridgital.com"] [uri "/.git/config"] [unique_id "alZOMk6xgn2Sf34WsCjFvQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
TheCoon
2026-07-13 05:45:01
(5 days ago)
Automated: Credential theft attempt - JSON bomb served
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-12 19:03:14
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.sup ...
show more
(mod_security) mod_security (id:210492) triggered by 212.253.95.234 (host-212-253-95-234.reverse.superonline.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 15:03:08.945845 2026] [security2:error] [pid 9278:tid 9278] [client 212.253.95.234:55510] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigkevsperformance.com"] [uri "/.git/config"] [unique_id "alPk7IKUK0E0qKTruhB_8wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack