Anonymous
2026-06-08 05:44:05
(3 weeks ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐ฉ๐ช
pltcldvlpr
2026-06-07 08:00:43
(3 weeks ago)
Bogus Useragent: 103.67.85.14 - - [07/Jun/2026:10:00:42 +0200] "GET /protocol?id=be_14_18&offset=115 ...
show more
Bogus Useragent: 103.67.85.14 - - [07/Jun/2026:10:00:42 +0200] "GET /protocol?id=be_14_18&offset=1150&seq=1191 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/17.0.855.0 Safari/532.0" asn=152004 org="PT Tujuh Fondasi Teknologi" country=ID
...
show less
Bad Web Bot
๐จ๐ฆ
polycoda
2026-03-23 11:02:19
(3 months ago)
๐ฅถ Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27
DDoS Attack
Anonymous
2025-12-10 16:49:30
(6 months ago)
botnet
DDoS Attack
๐ฎ๐ฉ
hermawan
2025-12-10 15:09:34
(6 months ago)
[Wed Dec 10 22:09:32.762291 2025] [security2:error] [pid 184744:tid 140034268108480] [client 103.67. ...
show more
[Wed Dec 10 22:09:32.762291 2025] [security2:error] [pid 184744:tid 140034268108480] [client 103.67.85.14:44586] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "HttpClient" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "253"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: HttpClient found within REQUEST_HEADERS:User-Agent: AndroidHttpClient (Linux; U; Android 13; in_ID; CPH2387; Build/TP1A.220905.001; Cronet/139.0.7205.3) request_line = GET /images/Klimatologi/Analisis/03-Analisis_Bulanan/Analisis_Hari_Tanpa_Hujan_Berturut-Turut_Maksimum_3_Bulanan_Update_1_Bulan_Sekali/Analisis_Hari_Tanpa_Hujan_Berturut-Turut_Maksimum_3_Bulanan_Provinsi_Jawa_Timur_Update_1_Bulan_Sekali/2023/12/Analisis_Bulanan_Hari_Tanpa_Hujan_Berturut-Turut_Maksimum_Bulan_Oktober-November-D..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/03-Ana
...
show less
Hacking
Web App Attack
๐จ๐ญ
backslash
2025-12-08 07:20:18
(6 months ago)
block ruleset DA4A07AEE48B136A3922182BE8AA8BFBC1840803
Bad Web Bot
๐ฎ๐ฉ
hermawan
2025-11-27 17:42:07
(7 months ago)
[Thu Nov 27 23:31:22.782715 2025] [security2:error] [pid 1008045:tid 139900688000704] [client 103.67 ...
show more
[Thu Nov 27 23:31:22.782715 2025] [security2:error] [pid 1008045:tid 139900688000704] [client 103.67.85.14:49919] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "188"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: %3a found within SERVER_NAME: staklim-jatim.bmkg.go.id request_line = GET /index.php/profil/arsip-artikel?catid=618&id=555556376%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-28-nopember-4-desember-2017&start=150 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=618&id=555556376%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-28-n..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/arsip-artikel"] [unique_id "aSh82l7i
...
show less
Hacking
Web App Attack
๐บ๐ธ
LARL-Stompro-2024
2025-11-25 06:57:31
(7 months ago)
Evergreen ILS - Mylist Bot Abuse - HTTP Port 443 - Fake UserAgent. Requests:1
Bad Web Bot
Anonymous
2025-11-24 18:26:43
(7 months ago)
scanning http requests from known botnet
Web App Attack
๐ท๐ด
INTEQ
2025-11-01 23:47:57
(7 months ago)
Web attack from 103.67.85.14
Web App Attack
๐ฉ๐ช
LRob.fr
2025-10-16 01:49:11
(8 months ago)
Bad web bot activity detected by Fail2Ban in plesk-apache-badbot jail
Bad Web Bot
๐ฉ๐ช
Mailguard-FRD
2025-10-08 18:16:58
(8 months ago)
1759947417 - 10/08/2025 20:16:57 Host: 103.67.85.14/103.67.85.14 Port: 445 TCP Blocked
...
Port Scan
๐ฆ๐บ
MAGIC
2025-09-30 03:18:41
(9 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฎ๐ฉ
hermawan
2025-09-22 17:50:12
(9 months ago)
[Tue Sep 23 00:47:57.071189 2025] [security2:error] [pid 1370543:tid 139669516834496] [client 103.67 ...
show more
[Tue Sep 23 00:47:57.071189 2025] [security2:error] [pid 1370543:tid 139669516834496] [client 103.67.85.14:38819] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "164"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: %3a found within SERVER_NAME: staklim-malang.info request_line = GET /index.php/profil/arsip-artikel?catid=476&id=553%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-26-mei-1-juni-2015&start=160 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=476&id=553%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-26-mei-1-juni-2015&start=160 R..."] [hostname "staklim-malang.info"] [uri "/index.php/profil/arsip-artikel"] [unique_id "aNGLzTT45EZoc
...
show less
Hacking
Web App Attack
๐ณ๐ฑ
exxos
2025-09-03 17:03:01
(9 months ago)
Attacks with Bad user agents
Hacking