85.237.194.19 [redacted] (206092-Internet Utilities Europe and Asia Limited United States Chicago) - ...
show more85.237.194.19 [redacted] (206092-Internet Utilities Europe and Asia Limited United States Chicago) - - [02/Feb/2026:20:53:56 +0100] "GET /.vscode/sftp.json HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Wind
...
show less
Bad Web Bot
Web App Attack
Anonymous
Botnet activity detected: Multiple non-service patterns, Slow horizontal with regular pattern, Coord ...
show moreBotnet activity detected: Multiple non-service patterns, Slow horizontal with regular pattern, Coordinated non-service scan, Horizontal scan with SYN retry, Horizontal scanner on non-service ports, Multiple scan indicators, Horizontal with multiple indicators, Mixed vertical+horizontal scanner, Confirmed scanner identified, Wide horizontal scanner (+2 more). Total 82 blocks.
show less
DDoS Attack
Port Scan
Hacking
Anonymous
85.237.194.19 - - [01/Feb/2026:11:40:51 +0000] "GET /docker/.env HTTP/1.1" 404 437 "-" "Mozilla/5.0 ...
show more85.237.194.19 - - [01/Feb/2026:11:40:51 +0000] "GET /docker/.env HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36"
...
show less
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 85.237.194.19 (US/United ...
show more(apache-scanners) Failed apache-scanners trigger with match [redacted] from 85.237.194.19 (US/United States/-)
show less
ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/85.237.194.19
2026-01- ...
show moreThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/85.237.194.19
2026-01-30 18:35:55 /robomongo.json
2026-01-30 18:36:33 /index.js
show less
[AUTORAVALT][[30/01/2026 - 21:03:38 -03:00 UTC]
Attack from [85.237.194.19] Action: BLocKed
DDoS At ...
show more[AUTORAVALT][[30/01/2026 - 21:03:38 -03:00 UTC]
Attack from [85.237.194.19] Action: BLocKed
DDoS Attack -> Participating in distributed denial-of-service.
Phishing -> Phishing websites and/or email.
Web Spam -> Comment/forum spam, HTTP referer spam, or other CMS spam.
Blog Spam -> CMS blog comment spam.
Web App Attack -> Attempts to probe for or exploit instal]
...
show less
DDoS Attack
Phishing
Web Spam
Blog Spam
Web App Attack
ThreatBook Intelligence: Zombie more details on http://threatbook.io/ip/85.237.194.19
2026-01-28 22: ...
show moreThreatBook Intelligence: Zombie more details on http://threatbook.io/ip/85.237.194.19
2026-01-28 22:09:56 /ssh-config.json
2026-01-28 07:24:51 /app.js
2026-01-28 22:10:20 /web/config.js
2026-01-28 07:24:10 /sftp-config.json
show less
(mod_security) mod_security (id:20000010) triggered by 85.237.194.19 (US/United States/-): 5 in the ...
show more(mod_security) mod_security (id:20000010) triggered by 85.237.194.19 (US/United States/-): 5 in the last 300 secs
show less