๐ซ๐ท
Tilellit.PRO
2026-07-12 08:32:28
(1 day ago)
Malicious web traffic detected by CrowdSec
Hacking
๐ฆ๐บ
MAGIC
2026-04-13 00:39:44
(3 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-03-05 13:15:43
(4 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
๐ช๐ธ
librebit
2026-02-25 02:06:25
(4 months ago)
Brute force
Brute-Force
๐ต๐ฑ
IROK
2026-02-23 09:54:47
(4 months ago)
Firewall Blocked - Unauthorized Port Scanning
...
Port Scan
๐บ๐ธ
TPI-Abuse
2026-02-13 19:18:25
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.97.37 (ec2-47-128-97-37.ap-southeast-1.c ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.97.37 (ec2-47-128-97-37.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 14:18:21.094777 2026] [security2:error] [pid 28392:tid 28392] [client 47.128.97.37:60512] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||ericeschenbach.com|F|2"] [data ".facebook.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ericeschenbach.com"] [uri "/http/:www.facebook.com"] [unique_id "aY94_V3fUOcVbG1XDvG5NAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
masterguru
2026-02-05 03:50:36
(5 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:User-Agent. (1100000 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:User-Agent. (1100000-128)
show less
Bad Web Bot
๐ฆ๐บ
MAGIC
2026-01-17 03:21:55
(5 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฉ๐ช
Reinhard
2026-01-15 00:15:21
(5 months ago)
Unknown activity, but too many attacks with too many users.
Hacking
๐ช๐ธ
masterguru
2025-12-26 21:22:06
(6 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122)
show less
Bad Web Bot
๐จ๐ฆ
1gz
2025-12-18 10:31:00
(6 months ago)
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method) ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฎ๐ฉ
hermawan
2025-12-10 01:27:07
(7 months ago)
[Wed Dec 10 08:20:32.936615 2025] [security2:error] [pid 298627:tid 140673488512704] [client 47.128. ...
show more
[Wed Dec 10 08:20:32.936615 2025] [security2:error] [pid 298627:tid 140673488512704] [client 47.128.97.37:15192] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "252"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/prediksi-iklim/prediksi-dasarian/deterministik-curah-hujan-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-dasarian/deterministik-curah-hujan-provinsi-jawa-timur"] [unique_id "aTjK4ISHTPL5j2eZn8-SoAABkAQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[298641] [iUqr1Q7z8So] [aTjK4ISHTPL
...
show less
Hacking
Web App Attack
๐ช๐ธ
masterguru
2025-12-03 07:12:26
(7 months ago)
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122)
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2025-11-01 05:32:34
(8 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.97.37 (ec2-47-128-97-37.ap-southeast-1.c ...
show more
(mod_security) mod_security (id:210730) triggered by 47.128.97.37 (ec2-47-128-97-37.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 01:32:28.822925 2025] [security2:error] [pid 24028:tid 24028] [client 47.128.97.37:19932] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.med-engineering.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.med-engineering.com"] [uri "/anti-captchas.com"] [unique_id "aQWbbIcRYxuSgMSO8KV3ewAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-10-23 08:59:38
(8 months ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH