Anonymous
2026-07-11 07:46:21
(1 day ago)
LH-Watcher: HONEYPOT
Hacking
SSH
๐ฉ๐ช
big-cloud.nl
2026-07-11 02:08:31
(1 day ago)
Try to access /xmlrpc.php
Web App Attack
๐บ๐ธ
ipblock.com
2026-07-10 17:30:00
(1 day ago)
IPBlock protected site ID [4055-d][s=07].
Rogue crawler, does not respect robots.txt
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-10 07:28:59
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 194.210.235.4 (p100.arquivo.pt): 1 in the last ...
show more
(mod_security) mod_security (id:210730) triggered by 194.210.235.4 (p100.arquivo.pt): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 03:28:54.980562 2026] [security2:error] [pid 11292:tid 11292] [client 194.210.235.4:50406] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.alexgitlin.com:80|F|2"] [data ".thehighwaystar.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.alexgitlin.com"] [uri "/npp/www.thehighwaystar.com"] [unique_id "alCfNi_tcE_VPBw_SiMSFwAAABE"], referer: http://www.alexgitlin.com/npp/silverhead.htm
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
ipblock.com
2026-07-08 01:49:00
(4 days ago)
IPBlock protected site ID [3192-af][s=06].
Persistent 404, vulnerability scanner
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
botreporter
2026-07-06 08:59:39
(5 days ago)
botnet ignoring robots.txt
Bad Web Bot
๐ซ๐ท
โจ
2026-07-05 00:17:18
(1 week ago)
Domain : these-islands.co.uk
Rule : hack
2026-07-05 00:16:18 ***hidden-privacy*** GET /css/)}.minica ...
show more
Domain : these-islands.co.uk
Rule : hack
2026-07-05 00:16:18 ***hidden-privacy*** GET /css/)}.minical .selected{background-image:url( - 443 - 194.210.235.4 HTTP/1.0 Arquivo-web-crawler (compatible; heritrix/3.4.0-20200304 https://arquivo.pt/faq-crawling) https://www.these-islands.co.uk/css/core.css?v=20171123 www.these-islands.co.uk:443 400 0 0 4143 464 42 - -
show less
Hacking
SQL Injection
Brute-Force
๐ฌ๐ง
NotCool
2026-07-03 23:35:50
(1 week ago)
(CRAWLDELAY) Generic Bot Crawl-delay Violation 194.210.235.4 (PT/Portugal/p100.arquivo.pt): 50 in th ...
show more
(CRAWLDELAY) Generic Bot Crawl-delay Violation 194.210.235.4 (PT/Portugal/p100.arquivo.pt): 50 in the last 3600 secs
show less
Bad Web Bot
๐ฉ๐ช
paissangroup
2026-07-03 06:47:59
(1 week ago)
Multiple WAF Violations
Web App Attack
๐ฌ๐ง
Marten Mark
2026-07-02 10:42:53
(1 week ago)
194.210.235.4 - - [02/Jul/2026:10:37:53 +0000] "GET /awards/europe/2017/teletrade-best-forex-broker- ...
show more
194.210.235.4 - - [02/Jul/2026:10:37:53 +0000] "GET /awards/europe/2017/teletrade-best-forex-broker-europe-2017/developer_id.dY2E1Nz HTTP/2.0" 404 8169 "https://cfi.co/awards/europe/2017/teletrade-best-forex-broker-europe-2017/" "Arquivo-web-crawler (compatible; heritrix/3.4.0-20200304 +https://arquivo.pt/faq-crawling)"
194.210.235.4 - - [02/Jul/2026:10:37:58 +0000] "GET /awards/europe/2017/teletrade-best-forex-broker-europe-2017/Firefox/ HTTP/2.0" 404 8169 "https://cfi.co/awards/europe/2017/teletrade-best-forex-broker-europe-2017/" "Arquivo-web-crawler (compatible; heritrix/3.4.0-20200304 +https://arquivo.pt/faq-crawling)"
194.210.235.4 - - [02/Jul/2026:10:38:13 +0000] "GET /awards/comments/feed/ HTTP/2.0" 403 156 "https://cfi.co/awards/europe/2017/teletrade-best-forex-broker-europe-2017/" "Arquivo-web-crawler (compatible; heritrix/3.4.0-20200304 +https://arquivo.pt/faq-crawling)"
194.210.235.4 - - [02/Jul/2026:10:41:28 +0000] "GET /awards/europe/2017/teletrade-best-forex-broker-europ
...
show less
Port Scan
Web App Attack
๐ฉ๐ช
botreporter
2026-07-02 01:34:56
(1 week ago)
botnet ignoring robots.txt
Bad Web Bot
๐ฉ๐ช
Skyrider
2026-07-02 00:48:38
(1 week ago)
crowdsecurity/http-bad-user-agent
Bad Web Bot
Anonymous
2026-07-01 23:41:03
(1 week ago)
Web App Attack, Hacking
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 21:58:19
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 194.210.235.4 (p100.arquivo.pt): 1 in the last ...
show more
(mod_security) mod_security (id:210730) triggered by 194.210.235.4 (p100.arquivo.pt): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:58:13.084551 2026] [security2:error] [pid 28084:tid 28084] [client 194.210.235.4:60092] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||tulsatvmemories.com:80|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tulsatvmemories.com"] [uri "/tulsatvmemories.com"] [unique_id "akWNddADU4cM1d4L18nJogAAAAk"], referer: http://tulsatvmemories.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
Origon
2026-07-01 15:11:00
(1 week ago)
http-bad-user-agent - IP: 194.210.235.4 - time="2026-07-01T17:10:59+02:00" level=info msg="(555f66b ...
show more
http-bad-user-agent - IP: 194.210.235.4 - time="2026-07-01T17:10:59+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-bad-user-agent by ip 194.210.235.4 (PT/1930) : 4h ban on Ip 194.210.235.4" module=db
show less
Bad Web Bot