MAGIC
2024-02-17 04:13:01
(9 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Steve
2024-02-16 06:59:41
(9 months ago)
Excessive crawling - not obeying robots.txt
Bad Web Bot
MAGIC
2024-02-16 02:01:52
(9 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
MAGIC
2024-02-15 01:04:12
(9 months ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2024-02-13 07:13:43
(9 months ago)
(mod_security) mod_security (id:243420) triggered by 47.128.52.83 (ec2-47-128-52-83.ap-southeast-1.c ... show more (mod_security) mod_security (id:243420) triggered by 47.128.52.83 (ec2-47-128-52-83.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 13 02:13:39.551456 2024] [security2:error] [pid 22875:tid 47828973942528] [client 47.128.52.83:63028] [client 47.128.52.83] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "ARGS:/upload/2020/02/11/20200211123308-d506f9f3-2s.png" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)||www.ajbruner.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.ajbruner.com"] [uri "/ct/artlib/i.php"] [unique_id "ZcsWo6N9sz_gYrGwV9VQ6QAAAlE"] show less
Brute-Force
Bad Web Bot
Web App Attack
MAGIC
2024-02-11 07:11:13
(9 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
MAGIC
2024-02-05 12:05:37
(10 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
MAGIC
2024-02-04 08:09:00
(10 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
MAGIC
2024-02-03 01:05:52
(10 months ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
hermawan
2024-02-02 10:23:45
(10 months ago)
[Fri Feb 02 17:23:40.257088 2024] [security2:error] [pid 1312229:tid 123909303174720] [client 47.128 ... show more [Fri Feb 02 17:23:40.257088 2024] [security2:error] [pid 1312229:tid 123909303174720] [client 47.128.52.83:10412] [client 47.128.52.83] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "12"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/prakiraan-bulanan/3937-prakiraan-curah-hujan-bulanan/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur-tahun-2019/555557063-prakiraan-curah-hujan-bulan-april-tahun-2019-update-dari-analisis-bulan-januari-2019 HTTP/..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan
... show less
Hacking
Web App Attack
Steve
2024-01-31 22:41:46
(10 months ago)
Excessive crawling - not obeying robots.txt
Bad Web Bot
MAGIC
2024-01-29 04:10:18
(10 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
MAGIC
2024-01-28 02:09:12
(10 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
TPI-Abuse
2024-01-26 18:39:26
(10 months ago)
(mod_security) mod_security (id:210730) triggered by 47.128.52.83 (ec2-47-128-52-83.ap-southeast-1.c ... show more (mod_security) mod_security (id:210730) triggered by 47.128.52.83 (ec2-47-128-52-83.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 26 13:39:23.454311 2024] [security2:error] [pid 8890] [client 47.128.52.83:53730] [client 47.128.52.83] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Himolla-ZeroStress-Recliner/Images/Sinatra/Thumbs.db"] [unique_id "ZbP8W_JYhQMgjQsHvnCADAAAAAU"] show less
Brute-Force
Bad Web Bot
Web App Attack
MAGIC
2024-01-26 08:22:58
(10 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot