MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:243420) triggered by 40.77.188.199 (msnbot-40-77-188-199.search.msn. ... show more(mod_security) mod_security (id:243420) triggered by 40.77.188.199 (msnbot-40-77-188-199.search.msn.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 13 08:32:46.552732 2024] [security2:error] [pid 17728:tid 17728] [client 40.77.188.199:45632] [client 40.77.188.199] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.hodlmoser.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.hodlmoser.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "ZrtSa2iUKJYmDCb26rM3cQAAAAI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
MAGIC
|
|
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
hermawan
|
|
[Fri Aug 02 08:04:33.973899 2024] [security2:error] [pid 360991:tid 126570572285504] [client 40.77.1 ... show more[Fri Aug 02 08:04:33.973899 2024] [security2:error] [pid 360991:tid 126570572285504] [client 40.77.188.199:6016] [client 40.77.188.199] ModSecurity: Access denied with code 403 (phase 1). Match of "pm /administrator/ /TableFilter/system-v167.css /index.php /android-icon-192-192.png /offline-service-worker-07-07-2023-v-4-15-0.js /plugins/Morpheus/ /offline-service-worker-01-08-2023-v4-5-1.js /index.php?module /depan/offline/ /OneSignalSDKWorker.js /O ..." against "REQUEST_LINE" required. [file "/etc/modsecurity/coreruleset-4.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "58"] [id "441003"] [msg "bot downloader Cache-Control no-cache gak punya cookies dan diluar REQUEST_LINE line"] [data "Matched Data: no-cache found within REQUEST_LINE: GET /matomo.php?ping=1&idsite=3&rec=1&r=201788&h=18&m=4&s=30&url=https%3A%2F%2Fstaklim-malang.info%2Findex.php%2Fprofil%2Fmeteorologi%2Flist-all-categories%2F4217-klimatologi%2Fprakiraan-klimatologi%2Fprakiraan-dasarian%2Fprakiraan-curah-hujan
... show less
|
Hacking
Web App Attack
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:243420) triggered by 40.77.188.199 (msnbot-40-77-188-199.search.msn. ... show more(mod_security) mod_security (id:243420) triggered by 40.77.188.199 (msnbot-40-77-188-199.search.msn.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 29 22:51:42.743651 2024] [security2:error] [pid 6159:tid 6159] [client 40.77.188.199:46016] [client 40.77.188.199] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.thingstodonude.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.thingstodonude.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "ZqhVPcweJlA0OtvLtghfnwAAABE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
hermawan
|
|
[Tue Jun 18 22:38:07.326154 2024] [security2:error] [pid 1239892:tid 124119624451648] [client 40.77. ... show more[Tue Jun 18 22:38:07.326154 2024] [security2:error] [pid 1239892:tid 124119624451648] [client 40.77.188.199:6592] [client 40.77.188.199] ModSecurity: Access denied with code 403 (phase 1). Match of "pm /administrator/ /index.php /android-icon-192-192.png /plugins/Morpheus/ /offline-service-worker-01-08-2023-v4-5-1.js /index.php?module /depan/offline/ /OneSignalSDKWorker.js /OneSignalSDKUpdaterWorker.js /worker-analytic-helper-29-11-2022.js /matomo-2 ..." against "REQUEST_LINE" required. [file "/etc/modsecurity/coreruleset-4.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "58"] [id "441003"] [msg "bot downloader Cache-Control no-cache gak punya cookies dan diluar REQUEST_LINE line"] [data "Matched Data: no-cache found within REQUEST_LINE: GET /matomo.php?action_name=Prakiraan%20Awal%20Musim%20Hujan%20Tahun%202023%20-%202024%20Zona%20Musim%20di%20Provinsi%20Jawa%20Timur&idsite=3&rec=1&r=206712&h=8&m=38&s=7&url=https%3A%2F%2Fstaklim-malang.info%2Findex.php%2Fprofil%2Fmeteorologi
... show less
|
Hacking
Hacking
Web App Attack
Web App Attack
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
DDoS Attack
Bad Web Bot
Bad Web Bot
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|
MAGIC
|
|
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
|
DDoS Attack
Bad Web Bot
|
|