MAGIC
2025-01-10 23:06:28
(6 days ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
hermawan
2025-01-10 12:59:51
(1 week ago)
[Fri Jan 10 15:04:29.421497 2025] [security2:error] [pid 80303:tid 125622112523968] [client 51.8.155 ... show more [Fri Jan 10 15:04:29.421497 2025] [security2:error] [pid 80303:tid 125622112523968] [client 51.8.155.70:42464] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "64"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561461-prakiraan-bulanan-sifat-hujan-bulan-januari-tahun-2025-update-dari-analisis-bulan-september-tahun-2024-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-iklim/prakiraan-bulanan/prakiraan-curah-hujan-bulanan/3-bulan-ke-depan/555561461-prakiraan-bulanan-sifat-hujan-bulan-ja
... show less
Hacking
Web App Attack
Anonymous
2025-01-06 17:23:08
(1 week ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
hermawan
2025-01-04 17:03:43
(1 week ago)
[Sat Jan 04 18:10:20.656886 2025] [security2:error] [pid 176500:tid 126533573727936] [client 51.8.15 ... show more [Sat Jan 04 18:10:20.656886 2025] [security2:error] [pid 176500:tid 126533573727936] [client 51.8.155.70:53078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "64"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "Z3kXHFhsdXesV2wueYuLAQABMxE"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[176518] [FzXlcLfktRc] [Z3kXHFhsdXesV2wueYuLAQABMxE] keep_alive=[1] [2025-01-04 18:10:20.656891] [R:Z3kXHFhsdXesV2wueYuLAQABMxE] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/b
... show less
Hacking
Web App Attack
MAGIC
2025-01-01 11:03:51
(2 weeks ago)
VM5 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
hermawan
2024-12-30 18:23:22
(2 weeks ago)
[Mon Dec 30 19:49:29.289359 2024] [security2:error] [pid 192633:tid 138939048851136] [client 51.8.15 ... show more [Mon Dec 30 19:49:29.289359 2024] [security2:error] [pid 192633:tid 138939048851136] [client 51.8.155.70:43781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.9.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "61"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/normal-klimatologi/197-normal-awal-musim/normal-awal-musim-hujan/normal-awal-musim-hujan-propinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/normal-klimatologi/197-normal-awal-musim/normal-awal-musim-hujan/normal-awal-musim-hujan-propinsi-jawa-timur"] [unique_id "Z3KW2VHcdhsgBCMm5vvP5gAASDg"] [staklim-malang.info] [staklim-malang.info] top=[192690] [uFJBPrTuuOA] [Z3KW2VHcdhsg
... show less
Hacking
Web App Attack
Anonymous
2024-12-30 17:35:34
(2 weeks ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
Anonymous
2024-12-29 19:05:40
(2 weeks ago)
Action: Block, Reason: DDOS attack detected
DDoS Attack
hermawan
2024-12-27 08:04:53
(3 weeks ago)
[Thu Dec 26 22:01:58.768698 2024] [security2:error] [pid 436144:tid 138323926070976] [client 51.8.15 ... show more [Thu Dec 26 22:01:58.768698 2024] [security2:error] [pid 436144:tid 138323926070976] [client 51.8.155.70:23223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.9.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "61"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "Z21v5hoWg1S0GsBrnLiXagAAETc"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[436200] [Qj+3oAU2V64] [Z21v5hoWg1S0GsBrnLiXagAAETc] keep_alive=[1] [2024-12-26 22:01:58.768702] [R:Z21v5hoWg1S0GsBrnLiXagAAETc] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bo
... show less
Hacking
Web App Attack
MAGIC
2024-12-25 19:01:46
(3 weeks ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
Progetto1
2024-12-24 00:14:02
(3 weeks ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
SCHAPPY
2024-12-23 19:16:33
(3 weeks ago)
Bad bot identified by user agent
Bad Web Bot
hermawan
2024-12-21 05:07:32
(3 weeks ago)
[Sat Dec 21 01:26:34.593952 2024] [security2:error] [pid 92049:tid 125554816706240] [client 51.8.155 ... show more [Sat Dec 21 01:26:34.593952 2024] [security2:error] [pid 92049:tid 125554816706240] [client 51.8.155.70:15017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.9.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "61"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "Z2W22qPICnlbORywOAxcYwAGjAE"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[92051] [fVVdyd9ntjY] [Z2W22qPICnlbORywOAxcYwAGjAE] keep_alive=[1] [2024-12-21 01:26:34.593957] [R:Z2W22qPICnlbORywOAxcYwAGjAE] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot'
... show less
Hacking
Web App Attack
SCHAPPY
2024-12-18 22:58:58
(4 weeks ago)
Bad bot identified by user agent
Bad Web Bot
hermawan
2024-12-13 14:46:52
(1 month ago)
[Fri Dec 13 17:11:15.363916 2024] [security2:error] [pid 50305:tid 128337599268544] [client 51.8.155 ... show more [Fri Dec 13 17:11:15.363916 2024] [security2:error] [pid 50305:tid 128337599268544] [client 51.8.155.70:50803] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.9.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "61"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /robots.txt HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "Z1wIQwnwPY9XVqG-bgxSYgAELDw"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[50366] [Wh0SDczjVFk] [Z1wIQwnwPY9XVqG-bgxSYgAELDw] keep_alive=[1] [2024-12-13 17:11:15.363921] [R:Z1wIQwnwPY9XVqG-bgxSYgAELDw] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot'
... show less
Hacking
Web App Attack