๐บ๐ธ
TPI-Abuse
2026-07-17 05:42:04
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 01:41:55.949056 2026] [security2:error] [pid 331260:tid 331260] [client 185.137.164.18:49987] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goshop.gatheringsattheschool.com"] [uri "/.git/HEAD"] [unique_id "alnAo8gdlVpR_afN7ph-NQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
4server
2026-07-17 03:56:34
(2 hours ago)
[FriJul1705:56:31.8633852026][security2:error][pid1361464:tid1361471][client185.137.164.18:0]ModSecu ...
show more
[FriJul1705:56:31.8633852026][security2:error][pid1361464:tid1361471][client185.137.164.18:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\|wget\|python\|nikto\|sqlmap\|acunetix\|fimap\|dirbuster\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"essesolution.ch.136-243-54-122.cpanel.site\"][uri\"/.git/HEAD\"][unique_id\"almn7w6W7VmCeri8rv5AgQAAAEQ\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 03:24:02
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 23:23:54.106388 2026] [security2:error] [pid 163935:tid 163935] [client 185.137.164.18:60119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.prestige-gem.evelynkay.com"] [uri "/.git/HEAD"] [unique_id "almgSu22jvhg3Nk8hV-IzgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 03:07:51
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 23:07:44.141414 2026] [security2:error] [pid 132555:tid 132555] [client 185.137.164.18:23991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sekel.z-mgmt.com"] [uri "/.git/HEAD"] [unique_id "almcgLR5hN5J6fqMFxlxCQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 00:11:20
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 20:11:13.379413 2026] [security2:error] [pid 14922:tid 14922] [client 185.137.164.18:52831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.instagenii.ficklepassionproductions.com"] [uri "/.git/HEAD"] [unique_id "allzIRgh7WVamgjhgyB07gAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 21:42:04
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 17:41:56.756047 2026] [security2:error] [pid 12669:tid 12669] [client 185.137.164.18:48893] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ggaccounting.services"] [uri "/.git/HEAD"] [unique_id "allQJL6v7-1fko2PDZ0PTwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-16 06:11:31
(1 day ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-16 05:22:01
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:21:53.527774 2026] [security2:error] [pid 22502:tid 22502] [client 185.137.164.18:24841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amarrasdeescobar.com.cerrovictoria.com"] [uri "/.git/HEAD"] [unique_id "alhqcfwRIt3sDAAz089SwwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
tsZero
2026-07-16 04:49:00
(1 day ago)
Scan example: path=/.git/HEAD status=404
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-16 03:07:48
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 23:07:44.067700 2026] [security2:error] [pid 10861:tid 10861] [client 185.137.164.18:61423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.danzantesdehuesca.com.disnet-m.com"] [uri "/.git/HEAD"] [unique_id "alhLAHayo0KWo83XepSSMgAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:49:36
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:49:31.074983 2026] [security2:error] [pid 15023:tid 15023] [client 185.137.164.18:50553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thestardance.stardancertantra.com"] [uri "/.git/HEAD"] [unique_id "alhGu9Usa9HiNvzNwzp8xwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:30:30
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:30:23.880935 2026] [security2:error] [pid 10815:tid 10815] [client 185.137.164.18:55673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.checkmyvaluemorganhill.kunzteam.com"] [uri "/.git/HEAD"] [unique_id "alhCPzZ37VUfM5pZhLTaEgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 02:15:19
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 22:15:12.694644 2026] [security2:error] [pid 10322:tid 10322] [client 185.137.164.18:41397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "doorofhopechurch.org.northernfrontier.net"] [uri "/.git/HEAD"] [unique_id "alg-sKwUzVuuzf7EcVOyVwAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 01:59:55
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 21:59:51.221001 2026] [security2:error] [pid 17536:tid 17536] [client 185.137.164.18:32885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.forma.crep-psych.org"] [uri "/.git/HEAD"] [unique_id "alg7F-uR5qjFf4AsBIItuQAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 01:44:28
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 185.137.164.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 21:44:21.193816 2026] [security2:error] [pid 17669:tid 17669] [client 185.137.164.18:32015] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.revelation-of-truth.galaxyretro.com"] [uri "/.git/HEAD"] [unique_id "alg3dT3c6ZN_dg9hrvumggAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack