π¬π§
consul.to
2026-06-11 18:38:34
(3 weeks ago)
Web attack/malicious scanning detected
Web App Attack
π©πͺ
Marc
2026-06-11 08:24:32
(3 weeks ago)
34.9.38.181 - - [11/Jun/2026:10:24:31 +0200] "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=gravi ...
show more
34.9.38.181 - - [11/Jun/2026:10:24:31 +0200] "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HTTP/1.1" 404 3229 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.29 Safari/537.36 OPR/15.0.1147.24 (Edition Next)" 34.9.38.181 - - [11/Jun/2026:10:24:31 +0200] "GET /wp-json/gravitysmtp/v1/tests/mock-data HTTP/1.1" 404 3230 "-" "Mozilla/5.0 (Linux; Android 8.0.0; LG-H873) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 34.9.38.181 - - [11/Jun/2026:10:24:31 +0200] "GET /wp-json/wp/v2/settings HTTP/1.1" 404 3229 "-" "Opera/9.80 (Android; Opera Mini/9.0.1829/66.318; U; en) Presto/2.12.423 Version/12.16"
show less
Brute-Force
π«π·
breubit
2026-06-11 06:52:37
(3 weeks ago)
34.9.38.181 - - [11/Jun/2026:08:52:36 +0200] "GET /wp-json/gravitysmtp/v1/settings HTTP/1.1" 404 140 ...
show more
34.9.38.181 - - [11/Jun/2026:08:52:36 +0200] "GET /wp-json/gravitysmtp/v1/settings HTTP/1.1" 404 14007 "-" "iTunes/4.2 (Macintosh; U; PPC Mac OS X 10.2)"
...
show less
Web App Attack
ππ°
Harold Wong
2026-06-11 04:06:43
(3 weeks ago)
$f2bV_matches
Brute-Force
π¬π§
poundawebsiteltd
2026-06-10 23:25:25
(3 weeks ago)
Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 34.9.38.181 - - [11/Jun/2026:00: ...
show more
Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 34.9.38.181 - - [11/Jun/2026:00:25:22 +0100] GET /workflow/deballiol HTTP/1.1 403 3035 https://[REDACTED_DOMAIN]/wp-json/gravitysmtp/v1/settings Mozilla/5.0 (Linux; Android 8.1.0; SM-J530F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36
show less
Web App Attack
π©πͺ
Viveronese
2026-06-10 14:42:07
(4 weeks ago)
HTTP vulnerability scanning
Web App Attack
π¨π
filou812
2026-06-10 14:32:28
(4 weeks ago)
urls tried are "/wp-json/gravitysmtp/v1/settings", "/wp-json/gravitysmtp/v1/tests/mock-data?page=gra ...
show more
urls tried are "/wp-json/gravitysmtp/v1/settings", "/wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings", "/wp-json/wp/v2/settings"
show less
Web App Attack
π«π·
Feelautom
2026-06-10 11:31:43
(4 weeks ago)
[FeelAutom Auto-Ban] PathScan: /fr/wp-json/gravitysmtp/v1/tests/mock-data (Score: 200)
Port Scan
π¨π
4server
2026-06-10 07:10:18
(4 weeks ago)
[WedJun1009:10:14.7038392026][security2:error][pid966386:tid967411][client34.9.38.181:0]ModSecurity: ...
show more
[WedJun1009:10:14.7038392026][security2:error][pid966386:tid967411][client34.9.38.181:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"mail.hosting-dominio.ch\"][uri\"/wp-json/gravitysmtp/v1/config\"][unique_id\"aikN1tlCp-zVQ0_UEwXoIQAAAQU\"]
show less
Hacking
Web App Attack
Anonymous
2026-06-09 19:50:08
(4 weeks ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
π«π·
IRISIO
2026-06-09 09:25:56
(4 weeks ago)
scans/SQL injection/spam posts : 10 queries
Web App Attack
SQL Injection
π¬π§
AvonleaConsulting
2026-06-09 07:49:54
(4 weeks ago)
Scanning unused Default website or suspicious access to valid sites from IP marked as abusive
Bad Web Bot
Web App Attack
πΊπΈ
VanKoh
2026-06-09 05:12:14
(4 weeks ago)
34.9.38.181 - - [08/Jun/2026:23:12:13 -0600] "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=gravi ...
show more
34.9.38.181 - - [08/Jun/2026:23:12:13 -0600] "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0b6pre) Gecko/20100907 Firefox/4.0b6pre"
34.9.38.181 - - [08/Jun/2026:23:12:13 -0600] "GET /wp-json/gravitysmtp/v1/tests/mock-data HTTP/1.1" 404 43945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.50 Safari/537.36"
34.9.38.181 - - [08/Jun/2026:23:12:13 -0600] "GET /wp-json/wp/v2/settings HTTP/1.1" 401 116 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116"
...
show less
Port Scan
Web App Attack
Anonymous
2026-06-09 04:17:10
(4 weeks ago)
Fuzzing/Looking for credentials files.
Brute-Force
Web App Attack
π¬π§
poundawebsiteltd
2026-06-09 03:40:06
(4 weeks ago)
Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 34.9.38.181 - - [09/Jun/2026:04: ...
show more
Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 34.9.38.181 - - [09/Jun/2026:04:40:04 +0100] GET /wp-json/gravitysmtp/v1/config HTTP/1.1 403 2789 - Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36
show less
Web App Attack