99.33.187.10
|
|
[Fri Jul 11 07:26:21.805455 2025] [security2:error] [pid 228454:tid 140158841009856] [client 99.33.1 ... show more[Fri Jul 11 07:26:21.805455 2025] [security2:error] [pid 228454:tid 140158841009856] [client 99.33.187.10:51711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "WOW64" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: WOW64 found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 ADG/11.0.2566 AOLBUILD/11.0.2566 Safari/537.36 request_line = GET /index.php/monitoring-hari-tanpa-hujan-berturut-turut/3881-monitoring-hari-tanpa-hujan-berturut-turut-indonesia/monitoring-hari-tanpa-hujan-berturut-turut-indonesia-tahun-2018/555556415-monitoring-hari-tanpa-hujan-berturut-turut-indonesia-pemutakhiran-10-januari-tahun-2018 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/monitoring-hari-tanpa-hujan-berturut
... show less
|
Hacking
Web App Attack
|
172.70.142.122
|
|
[Fri Jul 11 07:22:49.510791 2025] [security2:error] [pid 225836:tid 140159059220160] [client 172.70. ... show more[Fri Jul 11 07:22:49.510791 2025] [security2:error] [pid 225836:tid 140159059220160] [client 172.70.142.122:59962] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "CF-Connecting-IP" at REQUEST_HEADERS_NAMES:Cf-Connecting-Ip. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "374"] [id "440005"] [msg "BAD REQUEST_HEADERS_NAMES - Detected and Blocked"] [data "Matched Data: CF-Connecting-IP found within REQUEST_HEADERS_NAMES:Cf-Connecting-Ip: Cf-Connecting-Ip request_line = GET /images/Klimatologi/Analisis/Peta_Zona_Musim/Peta_Zona_Musim_ZOM_di_Provinsi_Jawa_Timur_Tahun_1991-2020-v1.jpg HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/images/Klimatologi/Analisis/Peta_Zona_Musim/Peta_Zona_Musim_ZOM_di_Provinsi_Jawa_Timur_Tahun_1991-2020-v1.jpg"] [unique_id "aHBZWczQmEmeIdJxTNzcSQAAUwI"] [staklim-malang.info] [staklim-malang.info] top=[225840] [8rBbT5yTs3I] [aHBZWczQmEmeIdJxTNzcSQAAUwI] keep_alive=[1] [202
... show less
|
Hacking
Web App Attack
|
69.63.184.13
|
|
[Fri Jul 11 07:21:22.071739 2025] [security2:error] [pid 225836:tid 140159412242112] [client 69.63.1 ... show more[Fri Jul 11 07:21:22.071739 2025] [security2:error] [pid 225836:tid 140159412242112] [client 69.63.184.13:59426] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/"] [unique_id "aHBZAszQmEmeIdJxTNzcRgAASAA"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[225838] [hI4jStyWs3I] [aHBZAszQmEmeIdJxTNzcRgAASAA] keep_alive=[1] [2025-07-11 07:21:22.071746] [R:aHBZAszQmEmeIdJxTNzcRgAASAA] UA:'meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)' Host:'staklim-jatim.bmkg.go.id' ACCEPT:'*/*'
... show less
|
Hacking
Web App Attack
|
69.63.184.10
|
|
[Fri Jul 11 07:21:22.069969 2025] [security2:error] [pid 225837:tid 140158899758784] [client 69.63.1 ... show more[Fri Jul 11 07:21:22.069969 2025] [security2:error] [pid 225837:tid 140158899758784] [client 69.63.184.10:36538] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Agent" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Agent found within REQUEST_HEADERS:User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler) request_line = GET /index.php/108-sumber-daya-manusia/struktur-organisasi/77-selamat-datang-di-stasiun-klimatologi-karangploso-malang HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/108-sumber-daya-manusia/struktur-organisasi/77-selamat-datang-di-stasiun-klimatologi-karangploso-malang"] [unique_id "aHBZAryIpJOB_2bo27l4oQAAgBU"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[225870] [jrsjSlyWs3I] [aHBZAryIpJOB_2bo27
... show less
|
Hacking
Web App Attack
|
47.128.18.127
|
|
[Fri Jul 11 07:17:53.091201 2025] [security2:error] [pid 223369:tid 140158950115008] [client 47.128. ... show more[Fri Jul 11 07:17:53.091201 2025] [security2:error] [pid 223369:tid 140158950115008] [client 47.128.18.127:39044] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) request_line = GET /index.php/profil/meteorologi/list-all-categories/4018-klimatologi/analisis-klimatologi/analisis-dasarian/distribusi-curah-hujan-dasarian-propinsi-jawa-timur/analisis-dasarian-distribusi-curah-hujan-tahun-2020-di-propinsi-jawa-timur/555558303-analisis-dasarian-distribusi-curah-huj..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-c
... show less
|
Hacking
Web App Attack
|
52.156.77.152
|
|
[Fri Jul 11 07:17:31.831552 2025] [security2:error] [pid 223369:tid 140158975293120] [client 52.156. ... show more[Fri Jul 11 07:17:31.831552 2025] [security2:error] [pid 223369:tid 140158975293120] [client 52.156.77.152:33514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan"] [unique_id "aHBYGyscM5mlZwmFtTWjJAABUAw"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[223385] [mu1qP
... show less
|
Hacking
Web App Attack
|
47.128.121.176
|
|
[Fri Jul 11 07:15:38.834242 2025] [security2:error] [pid 222349:tid 140158958507712] [client 47.128. ... show more[Fri Jul 11 07:15:38.834242 2025] [security2:error] [pid 222349:tid 140158958507712] [client 47.128.121.176:56210] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Feed" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Feed found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; TikTokSpider; [email protected]) request_line = GET /index.php/analisis-bulanan/179-analisis-distribusi-hujan/analisis-distribusi-sifat-hujan/analisis-distribusi-sifat-hujan-malang-bulanan/analisis-distribusi-sifat-hujan-malang-bulanan-tahun-2012/430-analisis-distribusi-curah-hujan-malang-bulan-september-tahun-2012 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/analisis-bulanan/179-analisis-distribusi-hu
... show less
|
Hacking
Web App Attack
|
74.7.35.49
|
|
[Fri Jul 11 07:12:34.768893 2025] [security2:error] [pid 217666:tid 140158941722304] [client 74.7.35 ... show more[Fri Jul 11 07:12:34.768893 2025] [security2:error] [pid 217666:tid 140158941722304] [client 74.7.35.49:40737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-bulanan/4293-prakiraan-curah-hujan-bulanan/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-bulanan-curah-hujan-di-propinsi-jawa-timur-tahun-2025/555561744-prakiraan-bulanan-curah-hujan-bulan-maret-tahun-2025-update-dari-analisis-bulan-januari-tahun-2025-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-bulanan/4293-prakiraan-curah-huja
... show less
|
Hacking
Web App Attack
|
114.5.220.155
|
|
[Fri Jul 11 07:11:00.801173 2025] [security2:error] [pid 214972:tid 140158397572800] [client 114.5.2 ... show more[Fri Jul 11 07:11:00.801173 2025] [security2:error] [pid 214972:tid 140158397572800] [client 114.5.220.155:51101] ModSecurity: Access denied with code 403 (phase 1). Match of "pm googlebot " against "REQUEST_HEADERS:From" required. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "97"] [id "448105"] [msg "BAD REQUEST Header From "] [data "Matched Data: found within REQUEST_HEADERS:From: bingbot(at)microsoft.com request_line = GET /index.php/analisis-iklim/analisis-bulanan/analisis-bulanan-tingkat-ketersediaan-air-bagi-tanaman HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/analisis-iklim/analisis-bulanan/analisis-bulanan-tingkat-ketersediaan-air-bagi-tanaman"] [unique_id "aHBWlCLKZVUelMTA08QrhgAAAIY"] [staklim-malang.info] [staklim-malang.info] top=[215005] [sckeJdymnp8] [aHBWlCLKZVUelMTA08QrhgAAAIY] keep_alive=[0] [2025-07-11 07:11:00.801180] [R:aHBWlCLKZVUelMTA08QrhgAAAIY] UA:'Mozilla/5.0 (Windows NT 10.0
... show less
|
Hacking
Web App Attack
|
74.7.35.60
|
|
[Fri Jul 11 07:05:36.879308 2025] [security2:error] [pid 212401:tid 140155771934400] [client 74.7.35 ... show more[Fri Jul 11 07:05:36.879308 2025] [security2:error] [pid 212401:tid 140155771934400] [client 74.7.35.60:31336] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-musim/4311-prakiraan-musim-kemarau/prakiraan-awal-musim-kemarau/prakiraan-awal-musim-kemarau-di-propinsi-jawa-timur/prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur/555561823-prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prakiraan-musim/4311-prakiraan-musim-k
... show less
|
Hacking
Web App Attack
|
74.7.35.58
|
|
[Fri Jul 11 07:05:33.652068 2025] [security2:error] [pid 212457:tid 140158891366080] [client 74.7.35 ... show more[Fri Jul 11 07:05:33.652068 2025] [security2:error] [pid 212457:tid 140158891366080] [client 74.7.35.58:42763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET /index.php/prakiraan-musim/4311-prakiraan-musim-kemarau/prakiraan-awal-musim-kemarau/prakiraan-awal-musim-kemarau-di-propinsi-jawa-timur/prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur/555561823-prediksi-6-bulanan-awal-musim-kemarau-tahun-2025-zona-musim-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/prakiraan-musim/4311-prakiraan-musim-kemara
... show less
|
Hacking
Web App Attack
|
200.110.203.245
|
|
[Fri Jul 11 07:02:57.683625 2025] [security2:error] [pid 208846:tid 140158003312320] [client 200.110 ... show more[Fri Jul 11 07:02:57.683625 2025] [security2:error] [pid 208846:tid 140158003312320] [client 200.110.203.245:40676] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "WOW64" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: WOW64 found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Windows NT 4.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2049.0 Safari/537.36 request_line = GET /index.php/profil/meteorologi/list-all-categories/4208-klimatologi/infografis/infografis-klimatologi/infografis-harian/suhu-maksimum-harian-di-jawa-timur/suhu-maksimum-harian-di-jawa-timur-tahun-2023/555560558-suhu-maksimum-harian-di-jawa-timur-tanggal-11-november-2023 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/4208-klimatologi/infografis/infog
... show less
|
Hacking
Web App Attack
|
34.255.215.63
|
|
[Fri Jul 11 07:01:59.727706 2025] [security2:error] [pid 208790:tid 140157382547136] [client 34.255. ... show more[Fri Jul 11 07:01:59.727706 2025] [security2:error] [pid 208790:tid 140157382547136] [client 34.255.215.63:56340] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUd89ImEinH5MHU8qytAAAARU"] [staklim-malang.info] [staklim-malang.info] top=[208838] [x23aBJwIXXI] [aHBUd89ImEinH5MHU8qytAAAARU] keep_alive=[0] [2025-07-11 07:01:59.727720] [R:aHBUd89ImEinH5MHU8qytAAAARU] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml;
... show less
|
Hacking
Web App Attack
|
91.217.13.175
|
|
1752192345 - 07/11/2025 07:05:45 Host: 91.217.13.175/91.217.13.175 Port: 23 TCP Blocked
...
|
Hacking
Web App Attack
|
54.246.1.31
|
|
[Fri Jul 11 07:01:59.209933 2025] [security2:error] [pid 208846:tid 140158824224448] [client 54.246. ... show more[Fri Jul 11 07:01:59.209933 2025] [security2:error] [pid 208846:tid 140158824224448] [client 54.246.1.31:48292] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUd-bbyvBOtbNkHC0sQAAAAAQ"] [staklim-malang.info] [staklim-malang.info] top=[208877] [yMrSBFxVXXI] [aHBUd-bbyvBOtbNkHC0sQAAAAAQ] keep_alive=[0] [2025-07-11 07:01:59.209936] [R:aHBUd-bbyvBOtbNkHC0sQAAAAAQ] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=
... show less
|
Hacking
Web App Attack
|
42.117.16.175
|
|
1752192286 - 07/11/2025 07:04:46 Host: 42.117.16.175/42.117.16.175 Port: 23 TCP Blocked
...
|
Hacking
Web App Attack
|
63.33.208.114
|
|
[Fri Jul 11 07:01:58.914210 2025] [security2:error] [pid 208790:tid 140157390939840] [client 63.33.2 ... show more[Fri Jul 11 07:01:58.914210 2025] [security2:error] [pid 208790:tid 140157390939840] [client 63.33.208.114:57314] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUds9ImEinH5MHU8qyswAAARQ"] [staklim-malang.info] [staklim-malang.info] top=[208837] [PwfOBFwJXXI] [aHBUds9ImEinH5MHU8qyswAAARQ] keep_alive=[0] [2025-07-11 07:01:58.914215] [R:aHBUds9ImEinH5MHU8qyswAAARQ] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml;
... show less
|
Hacking
Web App Attack
|
3.251.70.12
|
|
[Fri Jul 11 07:01:58.168526 2025] [security2:error] [pid 208846:tid 140158849402560] [client 3.251.7 ... show more[Fri Jul 11 07:01:58.168526 2025] [security2:error] [pid 208846:tid 140158849402560] [client 3.251.70.12:45168] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUdubbyvBOtbNkHC0sPwAAAAE"] [staklim-malang.info] [staklim-malang.info] top=[208874] [7AfDBJxVXXI] [aHBUdubbyvBOtbNkHC0sPwAAAAE] keep_alive=[0] [2025-07-11 07:01:58.168531] [R:aHBUdubbyvBOtbNkHC0sPwAAAAE] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=
... show less
|
Hacking
Web App Attack
|
108.130.116.65
|
|
[Fri Jul 11 07:01:57.665463 2025] [security2:error] [pid 208790:tid 140157952956096] [client 108.130 ... show more[Fri Jul 11 07:01:57.665463 2025] [security2:error] [pid 208790:tid 140157952956096] [client 108.130.116.65:59062] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUdc9ImEinH5MHU8qysgAAARI"] [staklim-malang.info] [staklim-malang.info] top=[208835] [TFi7BNwJXXI] [aHBUdc9ImEinH5MHU8qysgAAARI] keep_alive=[0] [2025-07-11 07:01:57.665466] [R:aHBUdc9ImEinH5MHU8qysgAAARI] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml
... show less
|
Hacking
Web App Attack
|
34.253.227.167
|
|
[Fri Jul 11 07:01:57.220202 2025] [security2:error] [pid 208846:tid 140157390939840] [client 34.253. ... show more[Fri Jul 11 07:01:57.220202 2025] [security2:error] [pid 208846:tid 140157390939840] [client 34.253.227.167:39260] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUdebbyvBOtbNkHC0sPgAAABU"] [staklim-malang.info] [staklim-malang.info] top=[208894] [XFC0BJxQXXI] [aHBUdebbyvBOtbNkHC0sPgAAABU] keep_alive=[0] [2025-07-11 07:01:57.220212] [R:aHBUdebbyvBOtbNkHC0sPgAAABU] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml
... show less
|
Hacking
Web App Attack
|
3.254.80.12
|
|
[Fri Jul 11 07:01:56.710704 2025] [security2:error] [pid 208790:tid 140158003312320] [client 3.254.8 ... show more[Fri Jul 11 07:01:56.710704 2025] [security2:error] [pid 208790:tid 140158003312320] [client 3.254.80.12:40622] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUdM9ImEinH5MHU8qysQAAAQw"] [staklim-malang.info] [staklim-malang.info] top=[208829] [6G6sBFwLXXI] [aHBUdM9ImEinH5MHU8qysQAAAQw] keep_alive=[0] [2025-07-11 07:01:56.710712] [R:aHBUdM9ImEinH5MHU8qysQAAAQw] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=
... show less
|
Hacking
Web App Attack
|
54.74.140.122
|
|
[Fri Jul 11 07:01:55.098676 2025] [security2:error] [pid 208790:tid 140157978134208] [client 54.74.1 ... show more[Fri Jul 11 07:01:55.098676 2025] [security2:error] [pid 208790:tid 140157978134208] [client 54.74.140.122:46814] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /index.php/informasi-iklim/analisis-dinamika-atmosfer-laut-analisis-dan-prediksi-curah-hujan/555558362-analisis-dan-prediksi-dasarian-dinamika-atmosfer-laut-dan-prediksi-curah-hujan-update-dasarian-iii-tanggal-21-31-oktober-2020 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/informasi-iklim/analisis-dinamika-atmosfer-laut-analisis-dan-prediksi-curah-hujan/555558362-analisis-dan-prediksi-dasarian-dinamika-atmosfer-laut-dan-prediksi-curah-hujan-update-dasarian-iii-tanggal-21-31-oktobe
... show less
|
Hacking
Web App Attack
|
63.33.213.7
|
|
[Fri Jul 11 07:01:53.357703 2025] [security2:error] [pid 208846:tid 140157399332544] [client 63.33.2 ... show more[Fri Jul 11 07:01:53.357703 2025] [security2:error] [pid 208846:tid 140157399332544] [client 63.33.213.7:33964] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /robots.txt HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "aHBUcebbyvBOtbNkHC0sPAAAABM"] [staklim-malang.info] [staklim-malang.info] top=[208892] [+7J5BBxRXXI] [aHBUcebbyvBOtbNkHC0sPAAAABM] keep_alive=[0] [2025-07-11 07:01:53.357707] [R:aHBUcebbyvBOtbNkHC0sPAAAABM] UA:'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15' Host:'staklim-malang.info' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=
... show less
|
Hacking
Web App Attack
|
17.241.75.247
|
|
[Fri Jul 11 07:01:53.189366 2025] [security2:error] [pid 208790:tid 140157994919616] [client 17.241. ... show more[Fri Jul 11 07:01:53.189366 2025] [security2:error] [pid 208790:tid 140157994919616] [client 17.241.75.247:53130] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "identity" at REQUEST_HEADERS:accept-encoding. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "94"] [id "448102"] [msg "BAD REQUEST Encode"] [data "Matched Data: identity found within REQUEST_HEADERS:accept-encoding: gzip,identity request_line = GET /index.php/informasi-iklim/analisis-dinamika-atmosfer-laut-analisis-dan-prediksi-curah-hujan/555558362-analisis-dan-prediksi-dasarian-dinamika-atmosfer-laut-dan-prediksi-curah-hujan-update-dasarian-iii-tanggal-21-31-oktober-2020 HTTP/1.1"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/index.php/informasi-iklim/analisis-dinamika-atmosfer-laut-analisis-dan-prediksi-curah-hujan/555558362-analisis-dan-prediksi-dasarian-dinamika-atmosfer-laut-dan-prediksi-curah-hujan-update-dasarian-iii-tanggal-21-31-oktobe
... show less
|
Hacking
Web App Attack
|
52.156.77.144
|
|
[Fri Jul 11 07:01:05.539404 2025] [security2:error] [pid 208790:tid 140159067612864] [client 52.156. ... show more[Fri Jul 11 07:01:05.539404 2025] [security2:error] [pid 208790:tid 140159067612864] [client 52.156.77.144:26040] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "User" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.15.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "227"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: User found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot request_line = GET / HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-malang.info"] [uri "/"] [unique_id "aHBUQc9ImEinH5MHU8qyUQABEQE"] [staklim-malang.info] [staklim-malang.info] top=[208792] [u2ehARwKXXI] [aHBUQc9ImEinH5MHU8qyUQABEQE] keep_alive=[1] [2025-07-11 07:01:05.539408] [R:aHBUQc9ImEinH5MHU8qyUQABEQE] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; +https://openai.com/bot' Host:'staklim-malang.info' A
... show less
|
Hacking
Web App Attack
|