hermawan - AbuseIPDB User Profile

Check an IP Address, Domain Name, or Subnet

e.g. 3.237.31.191, microsoft.com, or 5.188.10.0/24

User hermawan, the webmaster of staklim-jatim.bmkg.go.id, joined AbuseIPDB in March 2018 and has reported 578,925 IP addresses.

Standing (weight) is good.

ACTIVE USER WEBMASTER SUPPORTER

IP	Date	Comment	Categories
87.236.176.157	15 minutes ago	Sep 29 21:53:01 imap-login: Info: Disconnected: Auth process broken (disconnected before auth was re ... show moreSep 29 21:53:01 imap-login: Info: Disconnected: Auth process broken (disconnected before auth was ready, waited 0 secs): user=<>, rip=87.236.176.157, lip=103.166.156.58, session=<lmPBlIAGrc1X7LCd> ... show less	Email Spam Hacking
52.233.106.34	16 minutes ago	[Fri Sep 29 21:52:25.139154 2023] [security2:error] [pid 245999:tid 140496364009024] [client 52.233. ... show more[Fri Sep 29 21:52:25.139154 2023] [security2:error] [pid 245999:tid 140496364009024] [client 52.233.106.34:19463] [client 52.233.106.34] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot) request_line = GET /index.php/profil/meteorologi/list-all-categories/2393-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-papua/kalender-tanam-katam-terpadu-provinsi-papua/kalender-tanam-katam-terpadu-kabupaten-asmat-provinsi-papua/kalender-tanam-katam-terpadu-kecamatan-sa..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/met ... show less	Hacking Web App Attack
52.233.106.187	17 minutes ago	[Fri Sep 29 21:51:25.158947 2023] [security2:error] [pid 235171:tid 140496280081984] [client 52.233. ... show more[Fri Sep 29 21:51:25.158947 2023] [security2:error] [pid 235171:tid 140496280081984] [client 52.233.106.187:25179] [client 52.233.106.187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot) request_line = GET /index.php/profil/meteorologi/list-all-categories/4121-klimatologi/infografis/infografis-klimatologi/infografis-dasarian/infografis-dasarian-tahun-2022/2058-infografis-dasarian-informasi-iklim-jatim-update-10-november-tahun-2022 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/4121-klimatologi/infografis/infografis-klimatologi/infografis-d ... show less	Hacking Web App Attack
87.250.224.76	43 minutes ago	[Fri Sep 29 21:25:21.056195 2023] [security2:error] [pid 225866:tid 140494386476608] [client 87.250. ... show more[Fri Sep 29 21:25:21.056195 2023] [security2:error] [pid 225866:tid 140494386476608] [client 87.250.224.76:51750] [client 87.250.224.76] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "ZRbeUbb4QSo5TsCRUTw0HgAAAHs"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[225981] [aBfFMXhZYXg] [ZRbeUbb4QSo5TsCRUTw0HgAAAHs] keep_alive=[0] [2023-09-29 21:25:21.056197] [R:ZRbeUbb4QSo5TsCRUTw0HgAAAHs] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'/' Accept-Encod ... show less	Hacking Web App Attack
52.233.106.89	50 minutes ago	[Fri Sep 29 21:18:29.507158 2023] [security2:error] [pid 219007:tid 140496120620608] [client 52.233. ... show more[Fri Sep 29 21:18:29.507158 2023] [security2:error] [pid 219007:tid 140496120620608] [client 52.233.106.89:14080] [client 52.233.106.89] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot) request_line = GET /analisis-iklim/analisis-bulanan/indeks-presipitasi-terstandarisasi-spi-3-bulanan/ HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/analisis-iklim/analisis-bulanan/indeks-presipitasi-terstandarisasi-spi-3-bulanan/"] [unique_id "ZRbctUYqhMjnJG1YYEu-2AACITU"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[219061] [ubg9GfjTx3Q] [ZRbctUYqhMjnJG1YYEu-2AACITU] keep_alive=[1] [2023-09 ... show less	Hacking Web App Attack
114.119.131.248	54 minutes ago	[Fri Sep 29 21:13:40.251643 2023] [security2:error] [pid 208318:tid 140495527327296] [client 114.119 ... show more[Fri Sep 29 21:13:40.251643 2023] [security2:error] [pid 208318:tid 140495527327296] [client 114.119.131.248:39479] [client 114.119.131.248] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /images/Klimatologi/Analisis/04-Analisis-6-Bulanan/musim_hujan/2022-2023/Normal_Awal_Musim_Hujan_Zona_Musim_di_Provinsi_Jawa_Timur_Tahun_1991-2020.jpg HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/04-Analisis-6-Bulanan/musim_hujan/2022-2023/Normal_Awal_Musim_Hujan_Zona_Musim_di_Provinsi_Jawa_T ... show less	Hacking Web App Attack
114.119.136.196	54 minutes ago	[Fri Sep 29 21:13:40.251174 2023] [security2:error] [pid 208135:tid 140493874783808] [client 114.119 ... show more[Fri Sep 29 21:13:40.251174 2023] [security2:error] [pid 208135:tid 140493874783808] [client 114.119.136.196:49807] [client 114.119.136.196] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Curah_Hujan_Bulanan/Prakiraan_Curah_Hujan_Bulanan_Provinsi_Jawa_Timur/2022/11/03_Prakiraan_Curah_Hujan_Bulan_MARET_2023_di_Provinsi_Jawa_Timur-Update_dari_Analisis_Bulan_Nopember_2022.webp HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakira ... show less	Hacking Web App Attack
114.119.155.64	54 minutes ago	[Fri Sep 29 21:13:40.131869 2023] [security2:error] [pid 208135:tid 140494453585472] [client 114.119 ... show more[Fri Sep 29 21:13:40.131869 2023] [security2:error] [pid 208135:tid 140494453585472] [client 114.119.155.64:48063] [client 114.119.155.64] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/prakiraan-iklim/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/555560025-prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur-untuk-bulan-april-dasarian-ii-tahun-2023-tanggal-11-20-april-2023-update-20-maret-2023 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prak ... show less	Hacking Web App Attack
114.119.152.143	54 minutes ago	[Fri Sep 29 21:13:40.130674 2023] [security2:error] [pid 208318:tid 140495544112704] [client 114.119 ... show more[Fri Sep 29 21:13:40.130674 2023] [security2:error] [pid 208318:tid 140495544112704] [client 114.119.152.143:40149] [client 114.119.152.143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/profil/meteorologi/list-all-categories/1463-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil ... show less	Hacking Web App Attack
114.119.134.182	54 minutes ago	[Fri Sep 29 21:13:40.130354 2023] [security2:error] [pid 208318:tid 140495552505408] [client 114.119 ... show more[Fri Sep 29 21:13:40.130354 2023] [security2:error] [pid 208318:tid 140495552505408] [client 114.119.134.182:25711] [client 114.119.134.182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/prakiraan-iklim/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/555559567-prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur-untuk-bulan-juli-dasarian-iii-tanggal-21-31-juli-2022-tahun-2022-update-20-juli-2022 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prak ... show less	Hacking Web App Attack
114.119.129.7	54 minutes ago	[Fri Sep 29 21:13:39.636082 2023] [security2:error] [pid 208135:tid 140494461978176] [client 114.119 ... show more[Fri Sep 29 21:13:39.636082 2023] [security2:error] [pid 208135:tid 140494461978176] [client 114.119.129.7:29333] [client 114.119.129.7] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/profil/meteorologi/list-all-categories/1669-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/met ... show less	Hacking Web App Attack
114.119.138.27	58 minutes ago	[Fri Sep 29 21:09:37.904506 2023] [security2:error] [pid 206274:tid 140491727300160] [client 114.119 ... show more[Fri Sep 29 21:09:37.904506 2023] [security2:error] [pid 206274:tid 140491727300160] [client 114.119.138.27:48639] [client 114.119.138.27] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/prakiraan-cuaca-perairan-wilayah-jawa-timur-dan-sekitarnya/1983-klimatologi/agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-blitar/kalender-tanam-katam-terpadu-kecamatan..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraa ... show less	Hacking Web App Attack
114.119.142.125	1 hour ago	[Fri Sep 29 21:00:37.615772 2023] [security2:error] [pid 200989:tid 140495784912448] [client 114.119 ... show more[Fri Sep 29 21:00:37.615772 2023] [security2:error] [pid 200989:tid 140495784912448] [client 114.119.142.125:56255] [client 114.119.142.125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/profil/meteorologi/list-all-categories/3413-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-pulau-sumatra/kalender-tanam-katam-terpadu-provinsi-aceh/kalender-tanam-katam-terpadu-ka..."] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/mete ... show less	Hacking Web App Attack
114.119.130.91	1 hour ago	[Fri Sep 29 20:55:04.865297 2023] [security2:error] [pid 199152:tid 140495552505408] [client 114.119 ... show more[Fri Sep 29 20:55:04.865297 2023] [security2:error] [pid 199152:tid 140495552505408] [client 114.119.130.91:65521] [client 114.119.130.91] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/profil/meteorologi/list-of-all-tags/kalender-tanam-katam-terpadu-kabupaten-lamongan-tahun-2016-2017 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/list-of-all-tags/kalender-tanam-katam-terpadu-kabupaten-lamongan-tahun-2016-2017"] [unique_id "ZRbXOEZ962_WbszsTMiuWgAAATE"] [staklim-malang.in ... show less	Hacking Web App Attack
40.77.188.98	1 hour ago	[Fri Sep 29 20:48:57.719282 2023] [security2:error] [pid 189536:tid 140490661951040] [client 40.77.1 ... show more[Fri Sep 29 20:48:57.719282 2023] [security2:error] [pid 189536:tid 140490661951040] [client 40.77.188.98:19137] [client 40.77.188.98] ModSecurity: Access denied with code 403 (phase 2). Found 3 byte(s) in REQUEST_URI outside range: 32-36,38-126. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1942"] [id "920272"] [msg "Invalid character in request (outside of printable chars below ascii 127)"] [data "Matched Data: user-agent found within REQUEST_URI: /images/Klimatologi/Analisis/02-Analisis_Dasarian/Dinamika/2021/04_April_2021/Das-II/Analisis_Dinamika_Atmosfer\\xe2\\x80\\x93Laut_Dan_Prediksi_Curah_Hujan_Update_Dasarian_II_April_2021.jpg request_line = GET /images/Klimatologi/Analisis/02-Analisis_Dasarian/Dinamika/2021/04_April_2021/Das-II/Analisis_Dinamika_Atmosfer%E2%80%93Laut_Dan_Prediksi_Curah_Hujan_Update_Dasarian_II_April_2021.jpg HTTP/1.1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi" ... show less	Hacking Web App Attack
52.233.106.30	1 hour ago	[Fri Sep 29 20:35:26.861597 2023] [security2:error] [pid 173587:tid 140496059770432] [client 52.233. ... show more[Fri Sep 29 20:35:26.861597 2023] [security2:error] [pid 173587:tid 140496059770432] [client 52.233.106.30:41803] [client 52.233.106.30] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot) request_line = GET /index.php/prakiraan-musim/4158-prakiraan-musim-hujan/prakiraan-puncak-musim-hujan/prakiraan-puncak-musim-hujan-2022-2023/555559689-prakiraan-6-bulanan-prakiraan-puncak-musim-hujan-tahun-2022-2023-zona-musim-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-musim/4158-prakiraan-musim-hujan/prakiraan-puncak-musim-hujan/prakiraan-puncak-musim-hujan-2 ... show less	Hacking Web App Attack
95.108.213.146	1 hour ago	[Fri Sep 29 20:33:31.832751 2023] [security2:error] [pid 173587:tid 140494352938560] [client 95.108. ... show more[Fri Sep 29 20:33:31.832751 2023] [security2:error] [pid 173587:tid 140494352938560] [client 95.108.213.146:51686] [client 95.108.213.146] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "ZRbSK57Oh-SHvdcM9x1gUgAAAmw"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[173699] [m5JxeEcAuX4] [ZRbSK57Oh-SHvdcM9x1gUgAAAmw] keep_alive=[0] [2023-09-29 20:33:31.832760] [R:ZRbSK57Oh-SHvdcM9x1gUgAAAmw] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'/' Accept-Enc ... show less	Hacking Web App Attack
114.119.142.39	1 hour ago	[Fri Sep 29 20:32:41.267337 2023] [security2:error] [pid 173404:tid 140494881416768] [client 114.119 ... show more[Fri Sep 29 20:32:41.267337 2023] [security2:error] [pid 173404:tid 140494881416768] [client 114.119.142.39:42377] [client 114.119.142.39] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/profil/meteorologi/list-all-categories/2464-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-pulau-kalimantan/kalender-tanam-katam-terpadu-provinsi-kalimantan-barat/kalender-tanam-k..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/m ... show less	Hacking Web App Attack
221.194.175.23	1 hour ago	[Fri Sep 29 20:29:22.615624 2023] [security2:error] [pid 171808:tid 140495774418496] [client 221.194 ... show more[Fri Sep 29 20:29:22.615624 2023] [security2:error] [pid 171808:tid 140495774418496] [client 221.194.175.23:43674] [client 221.194.175.23] ModSecurity: Access denied with code 403 (phase 2). Match of "pm AppleWebKit Android" against "REQUEST_HEADERS:User-Agent" required. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1685"] [id "920300"] [msg "Request Missing an Accept Header"] [data "Matched Data: connection found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:72.0) Gecko/20100101 Firefox/72.0 request_line = GET /images/Meteorologi/Prakiraan/Prakiraan-Harian/01-Hari-Ini/2018/11/Banner-11-5-1-Prakiraan_Cuaca_HARI_INI_untuk_Pagi-Siang-Malam-Dini_Hari_di_Provinsi_Jawa_Timur_Berlaku_Mulai_SENIN_5_NOVEMBER_2018_Jam_07.00_WIB_Hingga_SELASA_6_NOVEMBER_2018_Jam_07.00_WIB_Update_Analisis_SENIN-5-11-2018.jpg HTTP/1.1"] [severity "NOTICE"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag " ... show less	Hacking Web App Attack
52.233.106.31	1 hour ago	[Fri Sep 29 20:13:25.529925 2023] [security2:error] [pid 166643:tid 140496336729664] [client 52.233. ... show more[Fri Sep 29 20:13:25.529925 2023] [security2:error] [pid 166643:tid 140496336729664] [client 52.233.106.31:2324] [client 52.233.106.31] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot) request_line = GET /index.php/prakiraan-iklim/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/555560298-prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur-untuk-bulan-agustus-dasarian-iii-tahun-2023-tanggal-21-31-agustus-2023-update-10-agustus-2023 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/555 ... show less	Hacking Web App Attack
213.180.203.138	2 hours ago	[Fri Sep 29 20:03:31.154671 2023] [security2:error] [pid 161840:tid 140494243866176] [client 213.180 ... show more[Fri Sep 29 20:03:31.154671 2023] [security2:error] [pid 161840:tid 140494243866176] [client 213.180.203.138:45448] [client 213.180.203.138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-sifat-hujan/555558891-analisis-bulanan-distribusi-sifat-hujan-bulan-juli-tahun-2021-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-bulanan/analisis-distribusi-hujan/analisis-distribusi-sifat-hujan/555558891-analisis-bulanan-distribusi-sifat-hujan-bulan-juli-tahun-2021-di-provin ... show less	Hacking Web App Attack
5.255.231.96	2 hours ago	[Fri Sep 29 20:03:09.361901 2023] [security2:error] [pid 161840:tid 140495418287680] [client 5.255.2 ... show more[Fri Sep 29 20:03:09.361901 2023] [security2:error] [pid 161840:tid 140495418287680] [client 5.255.231.96:64800] [client 5.255.231.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/analisis-iklim/analisis-dasarian/distribusi-curah-hujan-dasarian-provinsi-jawa-timur/555560033-analisis-dasarian-distribusi-curah-hujan-dasarian-iii-maret-2023-tanggal-21-31-maret-2023-di-provinsi-jawa-timur HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-dasarian/distribusi-curah-hujan-dasarian-provinsi-jawa-timur/555560033-analisis-dasarian-distribusi-curah-hujan-dasarian-iii-maret ... show less	Hacking Web App Attack
213.180.203.57	2 hours ago	[Fri Sep 29 20:02:39.049602 2023] [security2:error] [pid 161840:tid 140489428813376] [client 213.180 ... show more[Fri Sep 29 20:02:39.049602 2023] [security2:error] [pid 161840:tid 140489428813376] [client 213.180.203.57:37756] [client 213.180.203.57] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "ZRbK75weRM-Efe5SMPEQkwAAAeU"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[162017] [9poCCtfDlXo] [ZRbK75weRM-Efe5SMPEQkwAAAeU] keep_alive=[0] [2023-09-29 20:02:39.049605] [R:ZRbK75weRM-Efe5SMPEQkwAAAeU] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'/' Accept-Enc ... show less	Hacking Web App Attack
5.255.231.6	2 hours ago	[Fri Sep 29 20:01:46.197779 2023] [security2:error] [pid 161840:tid 140492540999232] [client 5.255.2 ... show more[Fri Sep 29 20:01:46.197779 2023] [security2:error] [pid 161840:tid 140492540999232] [client 5.255.231.6:42404] [client 5.255.231.6] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/informasi-iklim/atlas HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/atlas"] [unique_id "ZRbKupweRM-Efe5SMPEQigAAAcA"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[161980] [fEbcBkeqhnk] [ZRbKupweRM-Efe5SMPEQigAAAcA] keep_alive=[0] [2023-09-29 20:01:46.197782] [R:ZRbKupweRM-Efe5SMPEQigAAAcA] UA:'Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)' Host:'staklim-jatim ... show less	Hacking Web App Attack
213.180.203.140	2 hours ago	[Fri Sep 29 20:01:40.267247 2023] [security2:error] [pid 161840:tid 140493228840512] [client 213.180 ... show more[Fri Sep 29 20:01:40.267247 2023] [security2:error] [pid 161840:tid 140493228840512] [client 213.180.203.140:58898] [client 213.180.203.140] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) request_line = GET /index.php/citra-satelit-bmkg/1008-kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-sidoarjo/kalender-tanam-katam-terpadu-kecamatan-porong-kabupaten-sidoarjo/kalender-tanam-katam-terpadu-kecamatan-porong-kabupaten-sidoarjo-tahun-2016-2017/1524-kalender-tanam-katam-terpadu-kecamatan-porong-kabupate..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/citra- ... show less	Hacking Web App Attack