π§πͺ
cmbplf
2026-07-08 12:37:08
(6 hours ago)
25 requests with user_agent.original Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 ( ...
show more
25 requests with user_agent.original Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36 Edg/118.0.2088.76 GLS/97.10.7399.100
22 requests with user_agent.original Mozilla/5.0 (iPhone; CPU iPhone OS 15_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/19G82 Instagram 306.0.0.20.118 (iPhone12,1; iOS 15_6_1; en_GB; en; scale=2.00; 828x1792; 529083166) NW/3
22 requests with user_agent.original Mozilla/5.0 (Linux; Android 11; SM-A115M Build/RP1A.200720.012; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/102.0.5005.125 Mobile Safari/537.36 Instagram 306.0.0.35.109 Android (30/11; 280dpi; 720x1411; samsung; SM-A115M; a11q; qcom; pt_BR; 530130405)
22 requests with user_agent.original Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.0.0) Gecko/20020623 Debian/1.0.0-0.woody.1
21 requests with user_agent.original Mozilla/5.0 (Linux; Android 13; SAMSUNG SM-T220) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/23.0 Chrome/11
show less
Brute-Force
Bad Web Bot
πΊπΈ
kosada.com
2026-07-06 22:04:18
(1 day ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
π¦πΊ
Anytech
2026-07-03 23:03:23
(4 days ago)
Blocked by Conn-Monitor: Automated form spam
Bad Web Bot
Web App Attack
π¨π
backslash
2026-07-03 20:42:00
(4 days ago)
block ruleset 1E8A9918B1655D0828F2EEF05553DD2681055C9A
Web Spam
π¨π
4server
2026-06-20 19:44:45
(2 weeks ago)
[SatJun2021:44:42.6455042026][security2:error][pid1413619:tid1413718][client85.237.212.213:0]ModSecu ...
show more
[SatJun2021:44:42.6455042026][security2:error][pid1413619:tid1413718][client85.237.212.213:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.giuristifriburgo.ch\"][uri\"/contatti-e-iscrizioni/\"][unique_id\"ajbtqkTvAcwvcERglkkr5gAAAMw\"]\,referer:https://www.giuristifriburgo.ch/contatti-e-iscrizioni/
show less
Hacking
Web App Attack
π©πͺ
conseilgouz
2026-06-20 19:39:33
(2 weeks ago)
vew-(visforms) : try to access forms...
Hacking
π¬π§
consul.to
2026-06-18 19:11:44
(2 weeks ago)
Web attack/malicious scanning detected
Web App Attack
π¦πΊ
oncord
2026-06-13 04:05:59
(3 weeks ago)
Form spam
Web Spam
π«π·
Sorgin Informatique
2026-06-12 22:07:59
(3 weeks ago)
nee-6 : Trying access system files=>/license.txt(license.txt)
Hacking
πΊπΈ
TPI-Abuse
2026-06-12 21:20:28
(3 weeks ago)
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 17:20:24.154688 2026] [security2:error] [pid 27990:tid 27990] [client 85.237.212.213:54491] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||www.beckersystems.com|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "www.beckersystems.com"] [uri "/partners/businesstobusinessassociation.com/license.txt"] [unique_id "aix4GPG4eRw3EYmPYohxdAAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 20:31:58
(3 weeks ago)
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 16:31:55.237019 2026] [security2:error] [pid 9807:tid 9807] [client 85.237.212.213:32601] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||agribrokers.net|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "agribrokers.net"] [uri "/license.txt"] [unique_id "aixsu9qEdSZv8sVXDOiHUQAAAC0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 19:16:27
(3 weeks ago)
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 15:16:20.360287 2026] [security2:error] [pid 23887:tid 23887] [client 85.237.212.213:32163] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||carterslawncare.net|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "carterslawncare.net"] [uri "/license.txt"] [unique_id "aixbBDriHCiI7GEytzAu4wAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 18:23:43
(3 weeks ago)
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210801) triggered by 85.237.212.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 14:23:39.657713 2026] [security2:error] [pid 22063:tid 22063] [client 85.237.212.213:56379] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "17"] [id "210801"] [rev "2"] [msg "COMODO WAF: Request Indicates a Security Scanner Scanned the Site||elpaco.net|F|2"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [tag "CWAF"] [tag "Agents"] [hostname "elpaco.net"] [uri "/license.txt"] [unique_id "aixOq_irVqZZfOKFbm957gAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
FeG Deutschland
2026-06-09 19:03:56
(4 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
π©πͺ
todix
2026-06-09 17:31:22
(4 weeks ago)
WebAttack or semilar from 85.237.212.213
Web App Attack