π·πΊ
DZBOT
2026-06-27 12:16:31
(1 week ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π·πΊ
DZBOT
2026-05-23 08:56:36
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π·πΊ
DZBOT
2026-04-08 04:37:03
(2 months ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π«π·
bigorre.org
2026-03-10 15:21:48
(3 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
π¨π
backslash
2026-03-01 06:42:12
(4 months ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
πͺπΈ
librebit
2026-02-25 00:28:04
(4 months ago)
Brute force
Brute-Force
πΊπΈ
Jason Howell
2026-01-27 19:11:07
(5 months ago)
47.128.21.131 - - [27/Jan/2026:13:11:05 -0600] "GET /wp-login.php HTTP/1.1" 200 5449 "-" "Mozilla/5. ...
show more
47.128.21.131 - - [27/Jan/2026:13:11:05 -0600] "GET /wp-login.php HTTP/1.1" 200 5449 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
47.128.21.131 - - [27/Jan/2026:13:11:05 -0600] "GET /wp-includes/css/dashicons.min.css?ver=6.2.8 HTTP/1.1" 200 36222 "https://mautic.gannonpool.com/wp-login.php" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
47.128.21.131 - - [27/Jan/2026:13:11:06 -0600] "GET /wp-includes/css/buttons.min.css?ver=6.2.8 HTTP/1.1" 200 1812 "https://mautic.gannonpool.com/wp-login.php" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
47.128.21.131 - - [27/Jan/2026:13:11:06 -0600] "GET /wp-admin/css/l10n.min.css?ver=6.2.8 HTTP/1.1" 200 1363 "https://mautic.gannonpool.co
...
show less
Web App Attack
π¨π¦
1gz
2026-01-18 00:32:46
(5 months ago)
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method) ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoint: /showbiz/foto-krijuan-llogari-te-rreme-ne-emer-te-tij-ne-instagram-reagon-getinjo-mashtrime/720425/
UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-01-15 19:43:00
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.21.131 (ec2-47-128-21-131.ap-southeast-1 ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.21.131 (ec2-47-128-21-131.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 14:42:55.235919 2026] [security2:error] [pid 14903:tid 14903] [client 47.128.21.131:23584] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||lionheartpublications.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lionheartpublications.com"] [uri "/[email protected] "] [unique_id "aWlDP0zf-xO9svJXDiGRAAAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΈπ¬
anotherwatcher
2026-01-12 15:23:36
(5 months ago)
bad bot
Bad Web Bot
π«π·
bigorre.org
2026-01-03 20:54:06
(6 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
π«π·
Sklurk
2025-12-10 20:57:37
(6 months ago)
Web App Attack
Web App Attack
π¦πΊ
MAGIC
2025-11-28 01:21:55
(7 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
πͺπΈ
masterguru
2025-11-26 18:25:13
(7 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122)
show less
Bad Web Bot
πΊπΈ
xmission.com
2025-11-13 14:44:20
(7 months ago)
47.128.21.131 - - [13/Nov/2025:07:44:19 -0700] "GET /related/parenthood/page/443/?page=114 HTTP/2.0" ...
show more
47.128.21.131 - - [13/Nov/2025:07:44:19 -0700] "GET /related/parenthood/page/443/?page=114 HTTP/2.0" 200 11549 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
47.128.21.131 - - [13/Nov/2025:07:44:20 -0700] "GET /wp-content/uploads/2012/07/484.jpg HTTP/2.0" 206 500 "https://dooce.com/related/parenthood/page/443/?page=114" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
47.128.21.131 - - [13/Nov/2025:07:44:20 -0700] "GET /photos/leta/484.jpg HTTP/2.0" 404 146 "https://dooce.com/related/parenthood/page/443/?page=114" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
47.128.21.131 - - [13/Nov/2025:07:44:20 -0700] "GET /photos/leta/481.jpg HTTP/2.0" 404 146 "https://dooce.com/related/p
...
show less
Bad Web Bot