๐ฎ๐ฉ
Burayot
2026-06-27 05:45:07
(4 days ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 172.70.143.184 (SG/Singapore/-): 1 ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 172.70.143.184 (SG/Singapore/-): 1 in the last 3600 secs
show less
Web App Attack
๐ธ๐ฌ
Fn4ticHz
2025-12-16 13:37:05
(6 months ago)
repeated ddos targeted load.rapidreset.net -- ZeroGuard
DDoS Attack
๐บ๐ธ
mawan
2025-11-29 21:09:09
(7 months ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ฎ๐ฉ
hermawan
2025-11-14 08:43:40
(7 months ago)
[Fri Nov 14 14:44:06.358666 2025] [security2:error] [pid 509249:tid 140172657104576] [client 172.70. ...
show more
[Fri Nov 14 14:44:06.358666 2025] [security2:error] [pid 509249:tid 140172657104576] [client 172.70.143.184:35312] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "394"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/Profil_Pegawai/Andang_Kurniawan-JAS.webp HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Profil_Pegawai/Andang_Kurniawan-JAS.webp"] [unique_id "aRbdxl_NFAbHrKvmCocs8gADQQ0"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[509263] [+aODKck2J5k] [aRbdxl_NFAbHrKvmCocs8gADQQ0] keep_alive=[1] [2025-11-14 14:44:06.358671] [R:aRbdxl_NFAbHrKvmCocs8gADQQ0] Host:'staklim-jatim.bmkg.go.id' ACCEPT:'image/jpeg,i
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-11-09 13:01:54
(7 months ago)
[Sun Nov 09 20:01:15.113806 2025] [security2:error] [pid 1324749:tid 140440679474880] [client 172.70 ...
show more
[Sun Nov 09 20:01:15.113806 2025] [security2:error] [pid 1324749:tid 140440679474880] [client 172.70.143.184:29015] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "394"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg"] [unique_id "aRCQm2Lb2ppwpeM1DKt-qQABCQA"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1324750] [IE2AAmntNRw] [aRCQm2Lb2ppwpeM1DKt-qQABCQA] keep_alive=[1] [2025-11-09 20:01:15.113814] [R:aRCQm
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-10-30 00:50:11
(8 months ago)
[Thu Oct 30 07:48:01.012828 2025] [security2:error] [pid 378550:tid 140405973612224] [client 172.70. ...
show more
[Thu Oct 30 07:48:01.012828 2025] [security2:error] [pid 378550:tid 140405973612224] [client 172.70.143.184:42521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.19.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "374"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_3.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_3.jpg"] [unique_id "aQK1wA3SdaO25GCxLobgWQAByxg"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[378575] [bgfWmZVFEBw] [aQK1wA3SdaO25GCxLobgWQAByxg] keep_alive=[1] [2025-10-30 07:48:01.012836] [R:aQK1wA3
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-10-29 16:18:32
(8 months ago)
[Wed Oct 29 23:15:45.030812 2025] [security2:error] [pid 101924:tid 140639078426304] [client 172.70. ...
show more
[Wed Oct 29 23:15:45.030812 2025] [security2:error] [pid 101924:tid 140639078426304] [client 172.70.143.184:40090] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.19.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "374"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg"] [unique_id "aQI9setmrLa-5SjuWlhvAwACTgU"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[101930] [RBLWcc40+y8] [aQI9setmrLa-5SjuWlhvAwACTgU] keep_alive=[1] [2025-10-29 23:15:45.030820] [R:aQI9set
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-10-25 16:52:20
(8 months ago)
[Sat Oct 25 09:23:37.922373 2025] [security2:error] [pid 3677990:tid 140470559688384] [client 172.70 ...
show more
[Sat Oct 25 09:23:37.922373 2025] [security2:error] [pid 3677990:tid 140470559688384] [client 172.70.143.184:35407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "375"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg"] [unique_id "aPw0qY_viWpQHOW-ejP0GwABBgI"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[3677993] [CaiSWnIVQMM] [aPw0qY_viWpQHOW-ejP0GwABBgI] keep_alive=[1] [2025-10-25 09:23:37.922377] [R:aPw0q
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-10-23 14:05:45
(8 months ago)
[Thu Oct 23 20:46:25.956107 2025] [security2:error] [pid 1272716:tid 140157071025856] [client 172.70 ...
show more
[Thu Oct 23 20:46:25.956107 2025] [security2:error] [pid 1272716:tid 140157071025856] [client 172.70.143.184:37259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-RAY" at REQUEST_HEADERS_NAMES:Cf-Ray. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "375"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-RAY found within REQUEST_HEADERS_NAMES:Cf-Ray: Cf-Ray request_line = GET /b/sifat_bulananpacitan.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/b/sifat_bulananpacitan.jpg"] [unique_id "aPoxsWNlT2_Bc-8oEsvCqgABkBg"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1272741] [vKXGqBP+QAA] [aPoxsWNlT2_Bc-8oEsvCqgABkBg] keep_alive=[1] [2025-10-23 20:46:25.956113] [R:aPoxsWNlT2_Bc-8oEsvCqgABkBg] Host:'staklim-jatim.bmkg.go.id' ACCEPT:'image/jpeg,image/png,image/gif;q=0.1,image/*;q=0.1' Accept-Encoding:'gzip
...
show less
Hacking
Web App Attack
๐บ๐ธ
mawan
2025-10-21 10:39:18
(8 months ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
๐ฎ๐ฉ
hermawan
2025-10-18 16:04:50
(8 months ago)
[Sat Oct 18 23:02:14.071731 2025] [security2:error] [pid 403335:tid 140210569443008] [client 172.70. ...
show more
[Sat Oct 18 23:02:14.071731 2025] [security2:error] [pid 403335:tid 140210569443008] [client 172.70.143.184:61129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "375"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg"] [unique_id "aPO6BYP8f2ZuaXfh94h0jQABhwc"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[403343] [9fI5+fAlB3Y] [aPO6BYP8f2ZuaXfh94h0jQABhwc] keep_alive=[1] [2025-10-18 23:02:14.071742] [R:aPO6BYP
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-10-13 12:07:49
(8 months ago)
[Mon Oct 13 18:37:26.357451 2025] [security2:error] [pid 341455:tid 140350950721216] [client 172.70. ...
show more
[Mon Oct 13 18:37:26.357451 2025] [security2:error] [pid 341455:tid 140350950721216] [client 172.70.143.184:52172] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "375"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_8.jpg"] [unique_id "aOzkdpAWPjKN8hcv55W5cgADhwI"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[341458] [4Y4OsUjduhs] [aOzkdpAWPjKN8hcv55W5cgADhwI] keep_alive=[1] [2025-10-13 18:37:26.357458] [R:aOzkdpA
...
show less
Hacking
Web App Attack
๐ธ๐ฌ
pusathosting.com
2025-09-30 01:00:20
(9 months ago)
24ds22 bruteforce
Brute-Force
Web App Attack
๐ฎ๐ฉ
hermawan
2025-09-21 05:02:28
(9 months ago)
[Sun Sep 21 12:00:08.548870 2025] [security2:error] [pid 625129:tid 139919430248128] [client 172.70. ...
show more
[Sun Sep 21 12:00:08.548870 2025] [security2:error] [pid 625129:tid 139919430248128] [client 172.70.143.184:44740] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "375"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_3.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_3.jpg"] [unique_id "aM-GWDFVd0Bt4iqFgOP2aQABwQA"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[625130] [Yeqzk4jX+ag] [aM-GWDFVd0Bt4iqFgOP2aQABwQA] keep_alive=[1] [2025-09-21 12:00:08.548878] [R:aM-GWDF
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-09-20 02:08:30
(9 months ago)
[Sat Sep 20 09:07:43.998796 2025] [security2:error] [pid 1085694:tid 140408165226176] [client 172.70 ...
show more
[Sat Sep 20 09:07:43.998796 2025] [security2:error] [pid 1085694:tid 140408165226176] [client 172.70.143.184:33966] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "375"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_3.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/artikel/Pertanyaan_yang_Sering_Diajukan_mengenai_Perubahan_Iklim/gambar_3.jpg"] [unique_id "aM4Mb4Tfw8qeohC-vz82qgADyQE"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1085696] [TDxHDTI1mI0] [aM4Mb4Tfw8qeohC-vz82qgADyQE] keep_alive=[1] [2025-09-20 09:07:43.998804] [R:aM4Mb
...
show less
Hacking
Web App Attack