hermawan
2025-03-18 00:14:22
(1 week ago)
[Tue Mar 18 07:14:21.983339 2025] [security2:error] [pid 265379:tid 140565999969984] [client 47.128. ... show more [Tue Mar 18 07:14:21.983339 2025] [security2:error] [pid 265379:tid 140565999969984] [client 47.128.54.45:51508] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/profil/arsip-artikel?catid=483&id=1175%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-18-24-oktober-2016&start=120 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/arsip-artikel"] [unique_id "Z9i63QQKDqAzEYbT70GP6AAAsA8"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[265395] [ouBayTq87/I] [Z9i63show less
Hacking
Web App Attack
MAGIC
2025-03-17 23:00:13
(1 week ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
librebit
2025-03-16 04:36:01
(1 week ago)
Brute force
Brute-Force
AvonleaConsulting
2025-03-09 23:59:48
(2 weeks ago)
Brute force attack stopped by firewall
Web Spam
Brute-Force
Web App Attack
backslash
2025-02-28 07:50:12
(1 month ago)
block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638
Bad Web Bot
hermawan
2025-02-25 10:19:23
(1 month ago)
[Tue Feb 25 17:19:00.130196 2025] [security2:error] [pid 21963:tid 140577316501184] [client 47.128.5 ... show more [Tue Feb 25 17:19:00.130196 2025] [security2:error] [pid 21963:tid 140577316501184] [client 47.128.54.45:37888] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /index.php/profil/arsip-artikel?catid=475&id=945%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-5-11-april-2016&start=30 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/arsip-artikel"] [unique_id "Z72ZFODxLy49qpuJSdanswACCUs"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[22039] [uHYEyXxYYWA] [Z72ZFODxLy49show less
Hacking
Web App Attack
Mendip_Defender
2025-02-18 12:44:38
(1 month ago)
47.128.54.45 - - [18/Feb/2025:12:44:36 +0000] "GET /?mode=linear&nojs=1&p=11329 HTTP/1.0" 301 906 "- ... show more 47.128.54.45 - - [18/Feb/2025:12:44:36 +0000] "GET /?mode=linear&nojs=1&p=11329 HTTP/1.0" 301 906 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"show less
Bad Web Bot
Mendip_Defender
2025-02-16 08:33:49
(1 month ago)
47.128.54.45 - - [16/Feb/2025:08:33:47 +0000] "GET /?%3Fs=7d3241906f992e3b6fdcbeb7e5220b02 HTTP/1.0" ... show more 47.128.54.45 - - [16/Feb/2025:08:33:47 +0000] "GET /?%3Fs=7d3241906f992e3b6fdcbeb7e5220b02 HTTP/1.0" 301 824 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] )"show less
Bad Web Bot
Séfora Srl
2025-02-13 17:23:36
(1 month ago)
Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache ... show more Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache-badbot jail show less
Bad Web Bot
Séfora Srl
2025-02-12 06:47:58
(1 month ago)
Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache ... show more Bad user agents ignoring web crawling rules. Draing bandwidth - detected by Fail2Ban in plesk-apache-badbot jail show less
Bad Web Bot
2025-02-10 17:45:31
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
2025-02-08 03:12:07
(1 month ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
hermawan
2025-01-26 01:27:05
(2 months ago)
[Sun Jan 26 02:16:54.622224 2025] [security2:error] [pid 136108:tid 140481770010304] [client 47.128. ... show more [Sun Jan 26 02:16:54.622224 2025] [security2:error] [pid 136108:tid 140481770010304] [client 47.128.54.45:38336] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "59"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected] ) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "Z5U4pmDXacUlqFfx11nBLAAAAOE"] [staklim-malang.info] [staklim-malang.info] top=[136265] [t4WnrwRuaYc] [Z5U4pmDXacUlqFfx11nBLAAAAOE] keep_alive=[0] [2025-01-26 02:16:54.622229] [R:Z5U4pmDXacUlqFfx11nBLAAAAOE] UA:'Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Moshow less
Hacking
Web App Attack
2025-01-26 00:23:47
(2 months ago)
Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
backslash
2025-01-24 05:32:21
(2 months ago)
BadBotBlocker Trigger
Bad Web Bot
Singapore