Threat LevelMEDIUM27/1001 rule type
2 incidents on record · last seen 6d ago
| PTR | 253.red-79-150-118.dynamicip.rima-tde.net |
| Org / ASN | AS3352 TELEFONICA DE ESPANA S.A.U. |
| Country | 🇪🇸 Spain |
| City | Cartagena, Murcia |
| Timezone | Europe/Madrid |
Attack Analysis
Reconnaissance Behind Browser Disguise
This IP generated repeated HTTP 4xx errors (404/403) while spoofing a legitimate browser User-Agent (Chrome, Firefox). Real browsers do not repeatedly trigger 4xx errors in rapid succession — this is an automated scanner disguised as human traffic to evade bot detection.
Reports (2)
| Date | Severity | Description |
|---|---|---|
| 27 May 2026 - 10:42 | high | Rule 100305: Web: 4xx error with browser-like UA |
| 27 May 2026 - 04:12 | high | Rule 100305: Web: 4xx error with browser-like UA |