๐บ๐ธ
TPI-Abuse
2026-06-25 19:59:24
(4 days ago)
(mod_security) mod_security (id:210730) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.c ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 15:59:17.349868 2026] [security2:error] [pid 26599:tid 26599] [client 47.128.33.20:49710] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.pages4you.com|F|2"] [data ".old"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.pages4you.com"] [uri "/default.old"] [unique_id "aj2IlYCFh1KQcGOnzm7dQAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 19:25:06
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.c ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 15:24:58.540065 2026] [security2:error] [pid 23992:tid 23992] [client 47.128.33.20:49366] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.lertap5.com|F|2"] [data ".sas.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.lertap5.com"] [uri "/HTMLHelp/Lrtp59HTML/www.sas.com"] [unique_id "ajBRioVxFHAU7hN95Fis6AAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-17 18:04:43
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ซ๐ท
bigorre.org
2026-03-02 14:58:35
(3 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
๐จ๐ญ
backslash
2026-03-02 08:21:11
(3 months ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
๐ช๐ธ
librebit
2026-02-24 01:01:09
(4 months ago)
Brute force
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-02-22 09:41:15
(4 months ago)
(mod_security) mod_security (id:211190) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.c ...
show more
(mod_security) mod_security (id:211190) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 04:41:10.749412 2026] [security2:error] [pid 1727:tid 1727] [client 47.128.33.20:61206] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||heuristicbooks.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /Heuristic Books -- Algorithms for Better Living_files/ccx/?dir=%2Fhome%2Frbanis%2Fetc%2Fjuliahowell.banis-associates.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "heuristicbooks.com"] [uri "/Heuristic Books -- Algorithms for Better Living_files/ccx/"] [unique_id "aZrPNr1s0EEGBV-2pgkGXQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
1gz
2026-01-24 23:01:36
(5 months ago)
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method) ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoint: /showbiz/shperthen-elton-deda-ketu-kane-vlere-vetem-ordineret/378820/
UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ช๐ธ
masterguru
2026-01-02 06:28:37
(5 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122)
show less
Bad Web Bot
๐ธ๐ฌ
anotherwatcher
2025-12-16 21:46:18
(6 months ago)
bad bot
Bad Web Bot
Anonymous
2025-12-08 15:56:18
(6 months ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฌ๐ง
NotCool
2025-11-20 20:27:49
(7 months ago)
(CRAWLDELAY) Generic Bot Crawl-delay Violation 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.compute ...
show more
(CRAWLDELAY) Generic Bot Crawl-delay Violation 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.compute.amazonaws.com): 10 in the last 3600 secs
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-10-16 12:22:33
(8 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.c ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.33.20 (ec2-47-128-33-20.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 16 08:22:29.721992 2025] [security2:error] [pid 9905:tid 9905] [client 47.128.33.20:42850] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.med-engineering.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.med-engineering.com"] [uri "/bitarkanews.com"] [unique_id "aPDjhfrK_mtlM6pAus_86gAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2025-09-20 15:46:27
(9 months ago)
Detected attack by Imunify360
Brute-Force
Web App Attack
๐ซ๐ท
bigorre.org
2025-09-16 13:37:40
(9 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot