๐บ๐ธ
TPI-Abuse
2026-07-16 06:08:47
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 02:08:35.531359 2026] [security2:error] [pid 31600:tid 31600] [client 185.137.164.16:23097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tangastarot.okwellbeing.com"] [uri "/.git/HEAD"] [unique_id "alh1Y7rXPu8Fq7Z6CQ5_lQAAADY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:49:26
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:49:19.977826 2026] [security2:error] [pid 13787:tid 13791] [client 185.137.164.16:46221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.theextraordinaryoffice.monopostoyachts.com"] [uri "/.git/HEAD"] [unique_id "alhizzpKkSFe2NLeLD0fQwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
tsZero
2026-07-16 04:48:59
(2 hours ago)
Scan example: path=/.git/HEAD status=302
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-16 03:35:50
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 23:35:44.989234 2026] [security2:error] [pid 3034:tid 3034] [client 185.137.164.16:41903] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.emeraldisland.iainrealtor.com"] [uri "/.git/HEAD"] [unique_id "alhRkAtvvBEajWX4UW3xZAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:39:45
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:39:39.409240 2026] [security2:error] [pid 25794:tid 25794] [client 185.137.164.16:49453] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "doc.falundafatr.org"] [uri "/.git/HEAD"] [unique_id "alhEa8K9D5PSSBxjg3nMDAAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:24:35
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:24:28.198476 2026] [security2:error] [pid 14710:tid 14710] [client 185.137.164.16:44969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.monmouthcountydanceclasses.com.leonardodecaprio.com"] [uri "/.git/HEAD"] [unique_id "alhA3JyIws3CrlUNzyTY5wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:08:38
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:08:32.514741 2026] [security2:error] [pid 20203:tid 20203] [client 185.137.164.16:49483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moanddoyle.michaelprussin.com"] [uri "/.git/HEAD"] [unique_id "alg9ICsUuaokY7z3jkLfswAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 01:53:26
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 21:53:21.899775 2026] [security2:error] [pid 6639:tid 6639] [client 185.137.164.16:46715] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jpastordesign.com.jpastorphotographics.com"] [uri "/.git/HEAD"] [unique_id "alg5kYrsA7AHAtLUJyBOcAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 01:29:43
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 21:29:37.339238 2026] [security2:error] [pid 1409:tid 1409] [client 185.137.164.16:39569] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.shakenbait.com.bonefrog.com"] [uri "/.git/HEAD"] [unique_id "alg0ARKmCWKrWD2iXTyElAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
Ribeye375
2026-07-16 01:01:02
(6 hours ago)
HIPS web-exfiltration - Block tcp/0:65535
Web App Attack
๐ฉ๐ช
on-com
2026-07-16 01:00:24
(6 hours ago)
URL scan
Brute-Force
Web App Attack
๐ซ๐ฎ
as211431.net
2026-07-16 00:31:12
(6 hours ago)
Triggered Cloudflare WAF (bic) from DE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint ...
show more
Triggered Cloudflare WAF (bic) from DE.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /.git/HEAD
UA: Python-urllib/3.10
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ง๐ช
cmbplf
2026-07-15 23:35:40
(7 hours ago)
105 requests with url.path *.git/*
Brute-Force
Bad Web Bot
๐จ๐ญ
4server
2026-07-15 22:22:41
(9 hours ago)
[ThuJul1600:22:34.4135392026][security2:error][pid1089185:tid1089569][client185.137.164.16:0]ModSecu ...
show more
[ThuJul1600:22:34.4135392026][security2:error][pid1089185:tid1089569][client185.137.164.16:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"hostingedominio.ch.81-17-25-250.cpanel.site\"][uri\"/.git/HEAD\"][unique_id\"algIKh6j2ZLLVM3kJHDTJQAAAEc\"]
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 22:22:23
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 18:22:17.685794 2026] [security2:error] [pid 16705:tid 16705] [client 185.137.164.16:40133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.albioncapitalfund.starrmail.net"] [uri "/.git/HEAD"] [unique_id "algIGeFEbErIMRkwAHom7wAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack