๐บ๐ธ
TPI-Abuse
2026-07-16 15:18:10
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 54.189.134.195 (ec2-54-189-134-195.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 54.189.134.195 (ec2-54-189-134-195.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 11:18:05.230329 2026] [security2:error] [pid 29103:tid 29283] [client 54.189.134.195:48790] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cspmedia.com"] [uri "/.git/config"] [unique_id "alj2LWFXiWggGAq61HvPiAAAAkw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 10:45:40
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 54.189.134.195 (ec2-54-189-134-195.us-west-2.co ...
show more
(mod_security) mod_security (id:210492) triggered by 54.189.134.195 (ec2-54-189-134-195.us-west-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 06:45:32.045336 2026] [security2:error] [pid 18564:tid 18564] [client 54.189.134.195:39406] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "csems.org"] [uri "/.git/config"] [unique_id "ali2TONKFC1mbQPz5wAfKgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
DocNetzwerk
2026-07-16 09:45:03
(13 hours ago)
54.189.134.195 (US/United States/ec2-54-189-134-195.us-west-2.compute.amazonaws.com), more than 7 Ap ...
show more
54.189.134.195 (US/United States/ec2-54-189-134-195.us-west-2.compute.amazonaws.com), more than 7 Apache 403 hits
show less
Hacking
๐ซ๐ท
masterguru
2026-07-16 01:43:38
(21 hours ago)
Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
Anonymous
2026-07-16 01:27:51
(21 hours ago)
54.189.134.195 - - [16/Jul/2026:03:27:39 +0200] "GET /info.php HTTP/1.1" 404 29226
54.189.134.195 - ...
show more
54.189.134.195 - - [16/Jul/2026:03:27:39 +0200] "GET /info.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:40 +0200] "GET /php.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:41 +0200] "GET /i.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:42 +0200] "GET /pi.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:43 +0200] "GET /pinfo.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:44 +0200] "GET /test.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:45 +0200] "GET /phpinfo HTTP/1.1" 404 29866
54.189.134.195 - - [16/Jul/2026:03:27:46 +0200] "GET /p.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:47 +0200] "GET /debug.php HTTP/1.1" 404 29226
54.189.134.195 - - [16/Jul/2026:03:27:48 +0200] "GET /info HTTP/1.1" 404 29866
...
show less
Web Spam
Web App Attack
๐ซ๐ท
dynamix
2026-07-16 00:59:21
(22 hours ago)
Multiple WAF Violations
Web App Attack
๐ง๐ช
cmbplf
2026-07-15 22:42:18
(1 day ago)
5.166 requests with url.path *.env
727 requests with url.path *phpinfo.php
Brute-Force
Bad Web Bot
๐ณ๐ฑ
homeshowdomain.nl
2026-07-15 21:59:51
(1 day ago)
Auto-ban: >3000 req/min op 2026-07-15
Web App Attack
SSH
Hacking
๐ณ๐ฑ
Site.eu
2026-07-15 19:58:22
(1 day ago)
Excessive 404/403 errors
Brute-Force
Anonymous
2026-07-14 23:18:48
(1 day ago)
54.189.134.195 - - [15/Jul/2026:01:17:29 +0200] "GET /joomla/.env HTTP/1.1" 403 177 "-" "Mozilla/5.0 ...
show more
54.189.134.195 - - [15/Jul/2026:01:17:29 +0200] "GET /joomla/.env HTTP/1.1" 403 177 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
...
show less
Web App Attack
๐ฆ๐บ
artful
2026-07-14 21:35:00
(2 days ago)
Excessive errors ~1k in recent hours
Web App Attack