Anonymous
2025-03-14 21:33:32
(1 year ago)
Excessive crawling/scraping
Hacking
Brute-Force
๐บ๐ธ
mnsf
2025-03-13 05:05:55
(1 year ago)
Too many Status 40X (17)
Request Overload (119)
Brute-Force
Web App Attack
๐ฎ๐ฉ
hermawan
2025-03-12 21:18:35
(1 year ago)
[Thu Mar 13 03:59:43.495837 2025] [security2:error] [pid 21531:tid 140529704564416] [client 57.141.3 ...
show more
[Thu Mar 13 03:59:43.495837 2025] [security2:error] [pid 21531:tid 140529704564416] [client 57.141.3.12:32866] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /index.php/prakiraan-bulanan/4160-prakiraan-potensi-banjir/prakiraan-potensi-banjir-di-propinsi-jawa-timur/prakiraan-bulanan-daerah-potensi-banjir-provinsi-jawa-timur-tahun-2023/555559891-prakiraan-bulanan-daerah-potensi-banjir-di-provinsi-jawa-timur-untuk-bulan-februari-tahun-2023-update-10-januari-2023 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/4160-prakiraan-potensi-banjir/prakiraan-p
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-03-11 02:19:01
(1 year ago)
[Tue Mar 11 09:15:05.195032 2025] [security2:error] [pid 103355:tid 139784005592768] [client 57.141. ...
show more
[Tue Mar 11 09:15:05.195032 2025] [security2:error] [pid 103355:tid 139784005592768] [client 57.141.3.12:50100] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /index.php/prakiraan-musim/4193-prakiraan-musim-hujan/prakiraan-awal-musim-hujan/prakiraan-awal-musim-hujan-propinsi-jawa-timur/prakiraan-awal-musim-hujan-tahun-2023-2024-zona-musim-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-musim/4193-prakiraan-musim-hujan/prakiraan-awal-musim-hujan/prakiraan-awal-musim-hujan-propinsi-jawa-timur/prakiraan-awal-musim-hujan-tahun-2023-2024
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-03-11 01:47:31
(1 year ago)
[Tue Mar 11 08:46:31.583085 2025] [security2:error] [pid 91512:tid 139898111653568] [client 57.141.3 ...
show more
[Tue Mar 11 08:46:31.583085 2025] [security2:error] [pid 91512:tid 139898111653568] [client 57.141.3.12:37500] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /index.php/prakiraan-bulanan/4096-prakiraan-sifat-hujan-bulanan/prakiraan-sifat-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-bulanan-sifat-hujan-di-propinsi-jawa-timur-tahun-2021/1477-prakiraan-bulanan-sifat-hujan-bulan-desember-tahun-2021-update-dari-analisis-bulan-agustus-tahun-2021-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/4096-prakiraan-sifat-hujan-bulanan/p
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-03-10 15:58:08
(1 year ago)
[Mon Mar 10 22:56:12.849456 2025] [security2:error] [pid 11986:tid 140321958643392] [client 57.141.3 ...
show more
[Mon Mar 10 22:56:12.849456 2025] [security2:error] [pid 11986:tid 140321958643392] [client 57.141.3.12:58542] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "187"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /index.php/profil/meteorologi/list-of-all-tags/analisis-kondisi-dinamika-atmosfer-laut-dasarian-tahun-2020 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/list-of-all-tags/analisis-kondisi-dinamika-atmosfer-laut-dasarian-tahun-2020"] [unique_id "Z88LnMZAnBxDnAvl_xNR2gAAow0"] [staklim-malang.info] [staklim-malang.info] top=[12001] [bjPvAtfxwrc] [Z88LnMZAnBxDnAvl_xNR2gAAow0] keep_alive=[1] [2025-03
...
show less
Hacking
Web App Attack
Anonymous
2025-03-07 19:06:39
(1 year ago)
Excessive crawling/scraping
Hacking
Brute-Force
๐บ๐ธ
mnsf
2025-03-04 00:05:23
(1 year ago)
Too many Status 40X (27)
Request Overload (291)
Brute-Force
Web App Attack
๐ป๐ณ
Xuan Can
2025-03-02 13:12:03
(1 year ago)
(mod_security) mod_security (id:20000222) triggered by 57.141.3.12 (US/United States/-): 1 in the la ...
show more
(mod_security) mod_security (id:20000222) triggered by 57.141.3.12 (US/United States/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 02 20:11:59.903741 2025] [security2:error] [pid 14632:tid 20591] [remote 57.141.3.12:49692] [client 57.141.3.12] ModSecurity: Access denied with connection close (phase 2). Pattern match "wp-admin" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "46"] [id "20000222"] [severity "CRITICAL"] [hostname "kb.pavietnam.vn"] [uri "/huong-dan-sua-loi-khong-duoc-phep-truy-cap-wp-admin-trong-wordpress.html"] [unique_id "Z8RZHw9SGeCZTFNtr0eU9gABDiQ"]
show less
Brute-Force
SSH
Anonymous
2025-03-01 00:19:30
(1 year ago)
Excessive crawling/scraping
Hacking
Brute-Force
๐บ๐ธ
mnsf
2025-02-26 07:06:02
(1 year ago)
Too many Status 40X (20)
Request Overload (131)
Brute-Force
Web App Attack
Anonymous
2025-02-22 06:53:14
(1 year ago)
Excessive crawling/scraping
Hacking
Brute-Force
๐ฎ๐ฉ
hermawan
2025-02-19 08:48:36
(1 year ago)
[Wed Feb 19 15:47:36.149639 2025] [security2:error] [pid 71895:tid 140020783822528] [client 57.141.3 ...
show more
[Wed Feb 19 15:47:36.149639 2025] [security2:error] [pid 71895:tid 140020783822528] [client 57.141.3.12:39430] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "165"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /index.php/profil/meteorologi/list-of-all-tags/analisis-kejadian-banjir HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-of-all-tags/analisis-kejadian-banjir"] [unique_id "Z7WaqArmD8pYhpaPsBbudQAAQks"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[71971] [qFYdzzLVMas] [Z7WaqArmD8pYhpaPsBbudQAAQks] keep_alive=[1] [2025-02-19 15:47:36.149645] [R:Z7WaqArmD8pYhpaPsBbudQAAQks] UA
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-02-19 06:24:07
(1 year ago)
[Wed Feb 19 13:22:28.933672 2025] [security2:error] [pid 3179:tid 140022155986624] [client 57.141.3. ...
show more
[Wed Feb 19 13:22:28.933672 2025] [security2:error] [pid 3179:tid 140022155986624] [client 57.141.3.12:59580] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "165"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /images/Klimatologi/Prakiraan/02-Prakiraan-Dasarian/Prakiraan_Probabilistik_Curah_Hujan_Dasarian/Prakiraan_Probabilistik_Curah_Hujan_Dasarian_Provinsi_Jawa_Timur/2019/08/Peta_Prakiraan_Probabilistik_Curah_Hujan_Dasarian_III_AGUSTUS-2019_Provinsi_Jawa_Timur_Update_20_Agustus_2019.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/02-Prakiraan-Dasarian/Prakiraan_Probabilistik_Curah_Hujan_Dasar
...
show less
Hacking
Web App Attack
๐ฎ๐ฉ
hermawan
2025-02-19 05:54:12
(1 year ago)
[Wed Feb 19 12:26:15.356939 2025] [security2:error] [pid 36648:tid 140696734222016] [client 57.141.3 ...
show more
[Wed Feb 19 12:26:15.356939 2025] [security2:error] [pid 36648:tid 140696734222016] [client 57.141.3.12:45200] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.10.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "165"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /index.php/prakiraan-musim/4242-prakiraan-musim-kemarau/prakiraan-curah-hujan-musim-kemarau/prakiraan-curah-hujan-musim-kemarau-di-propinsi-jawa-timur/prakiraan-6-bulanan-curah-hujan-musim-kemarau-tahun-2024-zona-musim-di-provinsi-jawa-timur/555560833-prakiraan-6-bulanan-curah-hujan-musim-kemarau-tahun-2024-zona-musim-di-provinsi-jawa-ti..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-musim/4242-prakiraan-
...
show less
Hacking
Web App Attack