๐ฌ๐ง
Mendip_Defender
2026-07-12 07:25:30
(9 hours ago)
47.128.47.254 - - [12/Jul/2026:08:25:20 +0100] "GET /wp-content/uploads/2021/05/40-Local-councils-do ...
show more
47.128.47.254 - - [12/Jul/2026:08:25:20 +0100] "GET /wp-content/uploads/2021/05/40-Local-councils-documents-and-records-revised-Nov-2016.pdf HTTP/1.1" 200 4106 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
...
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-15 07:01:29
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 47.128.47.254 (ec2-47-128-47-254.ap-southeast-1 ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.47.254 (ec2-47-128-47-254.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 03:01:23.721558 2026] [security2:error] [pid 22594:tid 22594] [client 47.128.47.254:58258] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||phantomkennels.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "phantomkennels.com"] [uri "/paypal.com"] [unique_id "agbEwy_HQHFvMTS7QvmyGgAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nodepile
2026-04-30 17:36:50
(2 months ago)
Repeatedly blocked bad web bot (tenant=82 method=GET path=/bmz_cache/c/cc3df17f36090a54addb73a05f0a9 ...
show more
Repeatedly blocked bad web bot (tenant=82 method=GET path=/bmz_cache/c/cc3df17f36090a54addb73a05f0a9cbf.image.750x414.jpg ua='Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )')
show less
Bad Web Bot
๐ฆ๐บ
MAGIC
2026-04-29 02:42:46
(2 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-19 19:40:51
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.47.254 (ec2-47-128-47-254.ap-southeast-1 ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.47.254 (ec2-47-128-47-254.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 19 15:40:46.573585 2026] [security2:error] [pid 14629:tid 14629] [client 47.128.47.254:50980] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||phantomkennels.com|F|2"] [data "[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "phantomkennels.com"] [uri "/[email protected] "] [unique_id "aeUvvkPulalfn8Wq5R-XLAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Mendip_Defender
2026-04-11 07:44:16
(3 months ago)
47.128.47.254 - - [11/Apr/2026:08:44:12 +0100] "GET /robots.txt HTTP/1.0" 200 4224 "-" "Mozilla/5.0 ...
show more
47.128.47.254 - - [11/Apr/2026:08:44:12 +0100] "GET /robots.txt HTTP/1.0" 200 4224 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"
...
show less
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-02-27 13:41:04
(4 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-02-19 09:53:47
(4 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
๐จ๐ฆ
1gz
2026-02-03 07:07:05
(5 months ago)
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method) ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฎ๐ณ
dineshskt4all
2026-01-20 12:54:13
(5 months ago)
47.128.47.254 - - [20/Jan/2026:12:54:09 +0000] "GET /index.php?limit=100&order=ASC&path=80_82_83&pro ...
show more
47.128.47.254 - - [20/Jan/2026:12:54:09 +0000] "GET /index.php?limit=100&order=ASC&path=80_82_83&product_id=192&route=product%2Fproduct&sort=p.price HTTP/1.0" 403 3258 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected] ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36"
...
show less
IoT Targeted
๐ซ๐ท
bigorre.org
2026-01-02 15:28:34
(6 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
๐จ๐ฆ
1gz
2025-12-18 18:38:37
(6 months ago)
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: /kerko.php
UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
Anonymous
2025-11-23 17:11:37
(7 months ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฉ๐ช
conseilgouz
2025-11-05 06:07:20
(8 months ago)
vee-88 : Bloc AI bots=>/component/weblinks/weblink/6-lva?Itemid=1029&catid=15&task=weblink.g ...
show more
vee-88 : Bloc AI bots=>/component/weblinks/weblink/6-lva?Itemid=1029&catid=15&task=weblink.go(Bytespider)
show less
Hacking
๐บ๐ธ
xmission.com
2025-11-02 03:37:19
(8 months ago)
47.128.47.254 - - [01/Nov/2025:21:37:18 -0600] "GET /page/2486/ HTTP/2.0" 200 9883 "-" "Mozilla/5.0 ...
show more
47.128.47.254 - - [01/Nov/2025:21:37:18 -0600] "GET /page/2486/ HTTP/2.0" 200 9883 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected] ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36"
47.128.47.254 - - [01/Nov/2025:21:37:18 -0600] "GET /wp-content/uploads/2012/07/letahaircut1.jpg HTTP/2.0" 206 500 "https://dooce.com/page/2486/" "Mozilla/5.0 (compatible; Bytespider; [email protected] ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36"
47.128.47.254 - - [01/Nov/2025:21:37:19 -0600] "GET /photos/misc/letahaircut1.jpg HTTP/2.0" 206 500 "https://dooce.com/page/2486/" "Mozilla/5.0 (compatible; Bytespider; [email protected] ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36"
47.128.47.254 - - [01/Nov/2025:21:37:19 -0600] "GET /photos/misc/letahaircut3.jpg HTTP/2.0" 404 548 "https://dooce.com/page/2486/" "Mozilla/5.0 (compatible; Bytespider; [email protected] ) AppleWebKit/537.36
...
show less
Bad Web Bot