hermawan
2025-03-22 15:06:47
(4 days ago)
[Sat Mar 22 22:04:46.468172 2025] [security2:error] [pid 231626:tid 140432931534528] [client 47.128. ... show more [Sat Mar 22 22:04:46.468172 2025] [security2:error] [pid 231626:tid 140432931534528] [client 47.128.23.136:59842] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/profil/arsip-artikel?catid=619&id=1315%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-10-16-januari-2017&start=150 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/arsip-artikel"] [unique_id "Z97RjhOHZy8t_YbPDu5S6QACfQM"] [staklim-malang.info] [staklim-malang.info] top=[231630] [nwgRsSdO05o] [Z97RjhOHZy8t_YbPDu5show less
Hacking
Web App Attack
librebit
2025-03-18 03:12:52
(1 week ago)
Brute force
Brute-Force
2025-03-08 05:41:18
(2 weeks ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
2025-03-04 01:13:37
(3 weeks ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
hermawan
2025-03-01 13:38:20
(3 weeks ago)
[Sat Mar 01 20:34:20.089573 2025] [security2:error] [pid 121814:tid 139661401761472] [client 47.128. ... show more [Sat Mar 01 20:34:20.089573 2025] [security2:error] [pid 121814:tid 139661401761472] [client 47.128.23.136:21946] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/prakiraan-bulanan/4234-prakiraan-sifat-hujan-bulanan/prakiraan-sifat-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-bulanan-sifat-hujan-di-propinsi-jawa-timur-tahun-2024/555561025-prakiraan-bulanan-sifat-hujan-bulan-september-tahun-2024-update-dari-analisis-bulan-mei-ta..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/4234-prakirshow less
Hacking
Web App Attack
Séfora Srl
2025-02-27 17:00:20
(3 weeks ago)
Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache ... show more Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache-badbot jail show less
Bad Web Bot
backslash
2025-02-25 11:15:10
(1 month ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
Steve
2025-02-22 12:20:36
(1 month ago)
Excessive crawling - not obeying robots.txt
Bad Web Bot
hermawan
2025-02-22 00:01:46
(1 month ago)
[Sat Feb 22 07:01:15.999460 2025] [security2:error] [pid 170578:tid 140713420551872] [client 47.128. ... show more [Sat Feb 22 07:01:15.999460 2025] [security2:error] [pid 170578:tid 140713420551872] [client 47.128.23.136:44872] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "186"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/profil/arsip-artikel?catid=619&id=2413%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-7-13-februari-2017&start=160 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/arsip-artikel"] [unique_id "Z7kTy6XYs58RvUgkcnnXNgACWTY"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[170634] [XJFQzkfE0Ag] [Z7kTshow less
Hacking
Web App Attack
MAGIC
2025-02-17 00:02:05
(1 month ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
2025-02-14 00:38:21
(1 month ago)
Excessive crawling/scraping
Hacking
Brute-Force
Séfora Srl
2025-02-11 13:50:16
(1 month ago)
Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache ... show more Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache-badbot jail show less
Bad Web Bot
INTEQ
2025-02-06 15:03:09
(1 month ago)
Web attack from 47.128.23.136
Web App Attack
2025-01-31 14:18:32
(1 month ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
Mendip_Defender
2025-01-30 14:11:06
(1 month ago)
47.128.23.136 - - [30/Jan/2025:14:11:07 +0000] "GET /?page=3&pp=25&searchid=1816938 HTTP/1.0" 301 90 ... show more 47.128.23.136 - - [30/Jan/2025:14:11:07 +0000] "GET /?page=3&pp=25&searchid=1816938 HTTP/1.0" 301 902 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"show less
Bad Web Bot
Singapore