๐จ๐ฆ
Zandercraft
2026-06-16 13:29:28
(2 weeks ago)
Malicious Login/Access Attempts
Web App Attack
Anonymous
2026-06-11 20:37:51
(3 weeks ago)
34.39.125.79 - - [11/Jun/2026:20:37:50 +0000] "GET /wp-json/wp/v2/settings HTTP/1.1" 404 29098 "-" " ...
show more
34.39.125.79 - - [11/Jun/2026:20:37:50 +0000] "GET /wp-json/wp/v2/settings HTTP/1.1" 404 29098 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3888.0 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
Gabriel Camargo
2026-06-11 15:34:27
(3 weeks ago)
34.39.125.79 - - [11/Jun/2026:10:34:26 -0500] "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=grav ...
show more
34.39.125.79 - - [11/Jun/2026:10:34:26 -0500] "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.181 Safari/537.36"
34.39.125.79 - - [11/Jun/2026:10:34:26 -0500] "GET /wp-json/gravitysmtp/v1/settings HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Linux; Android 9; EML-L29) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"
34.39.125.79 - - [11/Jun/2026:10:34:26 -0500] "GET /wp-json/gravitysmtp/v1/config HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36"
...
show less
Brute-Force
SSH
๐ฉ๐ช
SCHAPPY
2026-06-11 07:51:11
(3 weeks ago)
Bad bot identified by user agent
Bad Web Bot
๐ฌ๐ท
setupgr
2026-06-11 06:12:01
(3 weeks ago)
(mod_security) mod_security (id:11000011) triggered by 34.39.125.79: 1 in the last 86400 secs; Ports ...
show more
(mod_security) mod_security (id:11000011) triggered by 34.39.125.79: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 09:11:57.393535 2026] [security2:error] [pid 2066464:tid 2066603] [client 34.39.125.79:57390] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 79.125.39.34.bc.googleusercontent.com"] [hostname "www.host.setworldup365.com"] [uri "/wp-json/gravitysmtp/v1/tests/mock-data"] [unique_id "aipRrEdtEUnd5Frf7ZTEzgAAAFM"]
show less
Port Scan
๐ณ๐ฑ
thedreamer.nl
2026-06-10 14:35:43
(3 weeks ago)
34.39.125.79 - - [10/Jun/2026:16:30:11 +0200] "GET /wp-json/gravitysmtp/v1/settings HTTP/1.1" 401 0 ...
show more
34.39.125.79 - - [10/Jun/2026:16:30:11 +0200] "GET /wp-json/gravitysmtp/v1/settings HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Symbian/3; Series60/5.2 NokiaC6-01/011.010; Profile/MIDP-2.1 Configuration/CLDC-1.1 ) AppleWebKit/525 (KHTML, like Gecko) Version/3.0 BrowserNG/7.2.7.2 3gpp-gba" "GB" "City of London" "51.51640" "-0.09300"
34.39.125.79 - - [10/Jun/2026:16:30:11 +0200] "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.5; rv:10.0.1) Gecko/20100101 Firefox/10.0.1 SeaMonkey/2.7.1" "GB" "City of London" "51.51640" "-0.09300"
34.39.125.79 - - [10/Jun/2026:16:30:11 +0200] "GET /wp-json/gravitysmtp/v1/config HTTP/1.1" 401 0 "-" "Mozilla/5.0 (Linux; Android 9; Redmi Note 5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36" "GB" "City of London" "51.51640" "-0.09300"
34.39.125.79 - - [10/Jun/2026:16:30:11 +0200] "GET /wp-json/wp/v2/settings HTTP/1.1" 401 0 "-" "Mozilla/5.0 (X11; Linu
...
show less
Hacking
Brute-Force
๐ฌ๐ง
consul.to
2026-06-10 14:32:18
(3 weeks ago)
Web attack/malicious scanning detected
Web App Attack
๐ซ๐ท
masterguru
2026-06-10 14:14:44
(3 weeks ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.39.125.79 (GB/United Kingdom/79.12 ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.39.125.79 (GB/United Kingdom/79.125.39.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195)
show less
Hacking
๐ฉ๐ช
Viveronese
2026-06-10 10:01:58
(3 weeks ago)
HTTP vulnerability scanning
Web App Attack
๐ฎ๐น
festigf
2026-06-10 08:00:07
(3 weeks ago)
Attacco rilevato da Fail2Ban su Nginx
Brute-Force
Web App Attack
Anonymous
2026-06-10 06:24:54
(3 weeks ago)
60 hits, proto=tcp, ports=443,80
Port Scan
Hacking
๐บ๐ธ
BSG Webmaster
2026-06-10 03:42:45
(3 weeks ago)
Hacking Attempt using path /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings
Brute-Force
Web App Attack
๐จ๐ญ
backslash
2026-06-09 14:57:02
(3 weeks ago)
block ruleset WAF detection and high score on abuseIPDB 149EB1B42C242111FADBBC2EF8F90219570691E1
Bad Web Bot
๐ฉ๐ช
Carsten
2026-06-09 14:44:53
(3 weeks ago)
GET [wp-json/gravitysmtp/v1/config]
Port Scan
๐ฉ๐ช
4server
2026-06-09 14:02:02
(3 weeks ago)
[TueJun0916:01:56.4568852026][security2:error][pid3027689:tid3027779][client34.39.125.79:0]ModSecuri ...
show more
[TueJun0916:01:56.4568852026][security2:error][pid3027689:tid3027779][client34.39.125.79:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.mgevents.ch.136-243-54-122.cpanel.site\"][uri\"/wp-json/gravitysmtp/v1/config\"][unique_id\"aigc1H1AQPqIlGxyqapkoQAAAME\"]
show less
Port Scan
Brute-Force
Web App Attack