hermawan
2024-05-02 12:19:11
(4 months ago)
[Thu May 02 19:19:09.132342 2024] [security2:error] [pid 1001561:tid 124557513983552] [client 47.128 ... show more [Thu May 02 19:19:09.132342 2024] [security2:error] [pid 1001561:tid 124557513983552] [client 47.128.122.235:28350] [client 47.128.122.235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "37"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/1418-kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-probolinggo/kalender-tanam-katam-terpadu-kecamatan-maron-kabupaten-probolinggo HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-i
... show less
Hacking
Web App Attack
MAGIC
2024-04-21 07:13:19
(4 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
10dencehispahard SL
2024-04-21 05:00:22
(4 months ago)
Unauthorized login attempts [ accesslogs]
Brute-Force
hermawan
2024-04-17 14:53:56
(4 months ago)
[Wed Apr 17 21:53:53.697897 2024] [security2:error] [pid 575451:tid 137708609472064] [client 47.128. ... show more [Wed Apr 17 21:53:53.697897 2024] [security2:error] [pid 575451:tid 137708609472064] [client 47.128.122.235:10486] [client 47.128.122.235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "36"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/profil/meteorologi/list-all-categories/3222-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-pulau-kalimantan/kalender-tanam-katam-terpadu-provinsi-kalimantan-barat/kalender-tanam-katam-terpadu-kot..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil
... show less
Hacking
Web App Attack
toolsource.com
2024-04-14 02:50:08
(4 months ago)
47.128.122.235 - - [13/Apr/2024:22:50:07 -0400] "GET /kinco-m-32943.html?filter_id=32101&page=6&sort ... show more 47.128.122.235 - - [13/Apr/2024:22:50:07 -0400] "GET /kinco-m-32943.html?filter_id=32101&page=6&sort=20a HTTP/2.0" 200 68639 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected] ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36"
... show less
Bad Web Bot
hermawan
2024-04-13 19:20:01
(5 months ago)
[Sun Apr 14 02:19:58.884620 2024] [security2:error] [pid 42644:tid 135187862128192] [client 47.128.1 ... show more [Sun Apr 14 02:19:58.884620 2024] [security2:error] [pid 42644:tid 135187862128192] [client 47.128.122.235:39178] [client 47.128.122.235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "36"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman/555560693-prakiraan-bulanan-tingkat-ketersediaan-air-bagi-tanaman-di-jawa-timur-untuk-bulan-maret-tahun-2024-update-dari-analisis-bulan-desember-tahun-2023 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-
... show less
Hacking
Web App Attack
MAGIC
2024-04-12 00:16:11
(5 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Sklurk
2024-04-07 01:36:43
(5 months ago)
Web App Attack
Web App Attack
MAGIC
2024-04-05 03:12:31
(5 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Sklurk
2024-04-03 03:19:08
(5 months ago)
Web App Attack
Web App Attack
bigorre.org
2024-04-02 17:04:13
(5 months ago)
Excessive crawling : exceed crawl-delay defined in robots.txt
Bad Web Bot
hermawan
2024-04-02 11:34:41
(5 months ago)
[Tue Apr 02 18:34:38.066327 2024] [security2:error] [pid 130767:tid 136077308331584] [client 47.128. ... show more [Tue Apr 02 18:34:38.066327 2024] [security2:error] [pid 130767:tid 136077308331584] [client 47.128.122.235:13916] [client 47.128.122.235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.0.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "36"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-hujan-bulanan/prakiraan-curah-hujan-bulanan/877-prakiraan-bulanan-curah-hujan-bulan-agustus-tahun-2019-update-dari-analisis-bulan-mei-2019 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-hujan-bulanan/prakiraan-curah-hujan-bulanan/
... show less
Hacking
Web App Attack
TheMadBeaker
2024-04-01 11:28:03
(5 months ago)
Fail2Ban Ban Triggered
HTTP Exploit Attempt
Brute-Force
Web App Attack
Sklurk
2024-04-01 02:58:53
(5 months ago)
Web App Attack
Web App Attack
Sklurk
2024-03-31 01:31:28
(5 months ago)
Web App Attack
Web App Attack