|
๐ฎ๐ฉ
BPS-StatisticsIndonesia
|
|
TinyMCE Scan Activities
|
Web App Attack
|
|
|
Anonymous
|
|
Ports: *; Direction: 0; Trigger: CT_LIMIT
|
Brute-Force
SSH
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Mon Apr 22 14:45:44.571122 2024] [security2:error] [pid 47892:tid 128510869898816] [client 175.45.1 ...
show more
[Mon Apr 22 14:45:44.571122 2024] [security2:error] [pid 47892:tid 128510869898816] [client 175.45.186.197:33056] [client 175.45.186.197] ModSecurity: Access denied with code 403 (phase 1). Match of "ipMatch 103.166.156.58" against "REMOTE_ADDR" required. [file "/etc/modsecurity/coreruleset-4.0.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "119"] [id "440006"] [msg "Connection Close Header"] [data "Matched Data: close found within REMOTE_ADDR: 175.45.186.197 request_line = GET /b/musim.pdf HTTP/1.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/b/musim.pdf"] [unique_id "ZiYVqO3LhDiuvM4pv_XjRAAAAVY"], referer https://www.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[47976] [IIPpnyoOvaY] [ZiYVqO3LhDiuvM4pv_XjRAAAAVY] keep_alive=[0] [2024-04-22 14:45:44.571126] [R:ZiYVqO3LhDiuvM4pv_XjRAAAAVY] UA:'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'text/html
...
show less
|
Hacking
Web App Attack
|
|
|
Anonymous
|
|
Ports: *; Direction: 0; Trigger: CT_LIMIT
|
Brute-Force
SSH
|
|
|
Anonymous
|
|
Ports: *; Direction: 0; Trigger: CT_LIMIT
|
Brute-Force
SSH
|
|
|
Anonymous
|
|
Ports: *; Direction: 0; Trigger: CT_LIMIT
|
Brute-Force
SSH
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Tue Jan 23 21:53:24.460759 2024] [security2:error] [pid 266084:tid 130681290098240] [client 175.45. ...
show more
[Tue Jan 23 21:53:24.460759 2024] [security2:error] [pid 266084:tid 130681290098240] [client 175.45.186.197:35852] [client 175.45.186.197] ModSecurity: Access denied with code 403 (phase 1). Match of "ipMatch 103.166.156.58" against "REMOTE_ADDR" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "62"] [id "440006"] [msg "Connection Close Header"] [data "Matched Data: close found within REMOTE_ADDR: 175.45.186.197 request_line = GET /index.php/profil/skema-update HTTP/1.1"] [hostname "staklim-malang.info"] [uri "/index.php/profil/skema-update"] [unique_id "Za_S5HysWneADwBgtyWZVQAAAvY"], referer https://staklim-jatim.bmkg.go.id/ [staklim-malang.info] [staklim-malang.info] top=[266184] [kfisGyYgHvk] [Za_S5HysWneADwBgtyWZVQAAAvY] keep_alive=[0] [2024-01-23 21:53:24.460763] [R:Za_S5HysWneADwBgtyWZVQAAAvY] UA:'Mozilla/5.0 (Linux; Android 11; Redmi Note 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36' Host:'
...
show less
|
Hacking
Web App Attack
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Thu Jan 18 05:42:02.813969 2024] [security2:error] [pid 475362:tid 127879453083200] [client 175.45. ...
show more
[Thu Jan 18 05:42:02.813969 2024] [security2:error] [pid 475362:tid 127879453083200] [client 175.45.186.197:36682] [client 175.45.186.197] ModSecurity: Access denied with code 403 (phase 1). Match of "ipMatch 103.166.156.58" against "REMOTE_ADDR" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "59"] [id "440006"] [msg "Connection Close Header"] [data "Matched Data: close found within REMOTE_ADDR: 175.45.186.197 request_line = GET /b/bulananmagetan.pdf HTTP/1.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/b/bulananmagetan.pdf"] [unique_id "ZahXuvmD7h51F38vYRQ98QAAAU8"], referer https://www.google.com/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[475469] [G/uh9JPD10M] [ZahXuvmD7h51F38vYRQ98QAAAU8] keep_alive=[0] [2024-01-18 05:42:02.813975] [R:ZahXuvmD7h51F38vYRQ98QAAAU8] UA:'Mozilla/5.0 (Linux; Android 13; 23021RAA2Y) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36' Host:'staklim-jatim.b
...
show less
|
Hacking
Web App Attack
|
|
|
๐ฎ๐ฉ
hermawan
|
|
[Wed Jan 03 12:49:03.160468 2024] [security2:error] [pid 409134:tid 140683490862656] [client 175.45. ...
show more
[Wed Jan 03 12:49:03.160468 2024] [security2:error] [pid 409134:tid 140683490862656] [client 175.45.186.197:57940] [client 175.45.186.197] ModSecurity: Access denied with code 403 (phase 1). Match of "ipMatch 103.166.156.58" against "REMOTE_ADDR" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "31"] [id "440006"] [msg "Connection Close Header"] [data "Matched Data: close found within REMOTE_ADDR: 175.45.186.197 request_line = GET /index.php/profil/skema-update HTTP/1.1"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/skema-update"] [unique_id "ZZT1T0MM4O0wZcAqwoKi5QAAAH4"], referer https://staklim-jatim.bmkg.go.id/b/musim.pdf [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[409222] [ZVsaLLzIkjI] [ZZT1T0MM4O0wZcAqwoKi5QAAAH4] keep_alive=[0] [2024-01-03 12:49:03.160471] [R:ZZT1T0MM4O0wZcAqwoKi5QAAAH4] UA:'Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/
...
show less
|
Hacking
Web App Attack
|
|
|
๐ฎ๐ฉ
Glaceon
|
|
XSS script target
|
Hacking
|
|
|
Anonymous
|
|
|
Web Spam
Email Spam
Blog Spam
Bad Web Bot
Web App Attack
|
|
|
๐ฒ๐พ
syokadmin
|
|
(CT) IP 175.45.186.197 (ID/Indonesia/cache.google.com) found to have 108 connections
|
Brute-Force
|
|
|
๐ฉ๐ช
[email protected]
|
|
Brute force 75 attempts
|
DDoS Attack
SQL Injection
Brute-Force
SSH
|
|