πΊπΈ
mnsf
2026-02-16 00:05:43
(4 months ago)
Too many Status 40X (12)
Scanning/Probing (12)
Brute-Force
Web App Attack
π¦πΊ
2000cn.com.au
2026-02-15 11:41:32
(4 months ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Hacking
Web App Attack
π¨π
Origon
2026-02-15 04:55:34
(4 months ago)
http-sensitive-files - IP: 104.207.39.212 - time="2026-02-15T05:55:34+01:00" level=info msg="(555f6 ...
show more
http-sensitive-files - IP: 104.207.39.212 - time="2026-02-15T05:55:34+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.39.212 (US/200373) : 4h ban on Ip 104.207.39.212" module=db
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 04:23:16
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:23:12.407307 2026] [security2:error] [pid 314087:tid 314109] [client 104.207.39.212:36257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "strengthsmatter.com"] [uri "/config/.env"] [unique_id "aZFKMOYxiADdM-D-ZqVQaQAAAFM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 03:57:01
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:56:54.300317 2026] [security2:error] [pid 5502:tid 5502] [client 104.207.39.212:64289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stinnetthomeinspection.com"] [uri "/config/.env"] [unique_id "aZFEBr67UbDSTTBQMXuXvAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 03:14:56
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:14:50.310740 2026] [security2:error] [pid 4945:tid 4945] [client 104.207.39.212:35111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stantontownship.org"] [uri "/.env.save"] [unique_id "aZE6Ktq3AiK3m60bQr0FWwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 02:40:04
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:40:00.241808 2026] [security2:error] [pid 1189411:tid 1189411] [client 104.207.39.212:57425] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naacd.com"] [uri "/api/.git/config"] [unique_id "aZEyAFpeRZComaEF7cIwRgAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-02-15 02:20:50
(4 months ago)
PSCSERV WPSCAN 104.207.39.212
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-15 01:35:52
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:35:48.469622 2026] [security2:error] [pid 18046:tid 18046] [client 104.207.39.212:51861] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "muzenique.com"] [uri "/api/.env"] [unique_id "aZEi9BOJfDYS-SxqrWbAyAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
WebNiraj
2026-02-14 23:14:09
(4 months ago)
(mod_security) mod_security (id:949110) triggered by 104.207.39.212 (US/United States/-): 5 in the l ...
show more
(mod_security) mod_security (id:949110) triggered by 104.207.39.212 (US/United States/-): 5 in the last 3600 secs [ZETA]
show less
Brute-Force
πΊπΈ
mnsf
2026-02-14 23:06:10
(4 months ago)
Too many Status 40X (11)
Scanning/Probing (11)
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-14 22:44:33
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:43:44.218303 2026] [security2:error] [pid 16820:tid 16820] [client 104.207.39.212:47717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limolaketahoe.com"] [uri "/test/.git/config"] [unique_id "aZD6oD3eUqg7zlbzKcgPAAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-14 22:14:50
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:14:46.727147 2026] [security2:error] [pid 2167:tid 2215] [client 104.207.39.212:59377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moidawg.gg"] [uri "/.git/config"] [unique_id "aZDz1iZIRZBCB3DKHld1DQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-14 21:51:40
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:51:37.118604 2026] [security2:error] [pid 18697:tid 18722] [client 104.207.39.212:64013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lesleyhcampbell.com"] [uri "/config/.env"] [unique_id "aZDuaTlgmtZS9isOOg7ilwAAANI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-14 21:32:08
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.207.39.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:32:04.111871 2026] [security2:error] [pid 487315:tid 487315] [client 104.207.39.212:47083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "legionellaexperts.org"] [uri "/site/.git/config"] [unique_id "aZDp1PmhZ42ZrUSEL7IuGQAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack