๐ฉ๐ช
Petros Stefanakis
2026-07-18 02:47:26
(1 day ago)
(mod_security) mod_security triggered on hostname [redacted] 54.91.157.104 (US/United States/ec2-54- ...
show more
(mod_security) mod_security triggered on hostname [redacted] 54.91.157.104 (US/United States/ec2-54-91-157-104.compute-1.amazonaws.com)
show less
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-18 02:33:41
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 54.91.157.104 (ec2-54-91-157-104.compute-1.amaz ...
show more
(mod_security) mod_security (id:210492) triggered by 54.91.157.104 (ec2-54-91-157-104.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 22:33:36.045056 2026] [security2:error] [pid 1286871:tid 1286871] [client 54.91.157.104:34604] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "entertainer-review.com"] [uri "/.git/config"] [unique_id "alrmAABbrmkmBmuVd_FCggAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-17 22:00:00
(1 day ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-16.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-17 04:23:22
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 54.91.157.104 (ec2-54-91-157-104.compute-1.amaz ...
show more
(mod_security) mod_security (id:210492) triggered by 54.91.157.104 (ec2-54-91-157-104.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 00:23:18.521858 2026] [security2:error] [pid 24263:tid 24335] [client 54.91.157.104:34600] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "inkandthreadllc.com"] [uri "/.git/config"] [unique_id "almuNoNgJ_HKdsJeX33lEwAAAcg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 01:10:03
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
Anonymous
2026-07-16 19:00:21
(2 days ago)
Fail2Ban: ModSecurity detected a web application attack.
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-07-16 15:05:22
(2 days ago)
Scanning/Probing (27)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 13:40:23
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 54.91.157.104 (ec2-54-91-157-104.compute-1.amaz ...
show more
(mod_security) mod_security (id:210492) triggered by 54.91.157.104 (ec2-54-91-157-104.compute-1.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:40:16.993439 2026] [security2:error] [pid 32317:tid 32317] [client 54.91.157.104:60480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "minnig.net"] [uri "/.git/config"] [unique_id "aljfQBrTZH1vSwiHYgubrQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack