Hacker Protokoll September 2025

Das Hacker Protokoll September 2025

Dieses Hacker Protokoll September 2025 ist nicht mehr so umfangreich, da wir ja nicht jeden Zugriff dieser Hacker-Idioten posten. Trotzdem immer wieder diese unermüdlichen Login Idioten und Amateur Hacker, die es wieder und immer wieder versuchen, trotz einem 403, eine Homepage zu hacken.

Es wird bestimmt auch  jeden „braven“ Besucher hier bestimmt amüsieren, denn hier findet man die Auszug von gewissen Taugenixe mit ihren lächerlichen und armseeligen Versuchen, um eine Homepage zu übernehmen bzw. zu hacken.

Dieses Hacker Protokoll September 2025  soll ebenfalls so einige Hosting-Provider und Provider für Cloud´s endlich mal wachrütteln, damit sie ENDLICH die Webspaces ihrer Kunden besser vor diesen ganzen Login- und Hacker-Müll schützen!!! Viele Mails an Abuse der jeweiligen verantwortlichen Provider wurden geschrieben. Oft kam nur Blabla aber es ändert sich absolut NICHTS!

Somit hier nun das Protokoll vom September . Man bedenke, die jeweiligen Tabellen sind immer nur ein ganz kleiner Auszug von dem, was da wirklich über den ganzen Tag auf den bestroffenen Websites versucht wurde. Zum Schutz der betroffenen Domains wurden diese ausgeschwärzt oder mit Stern (*) versehen.

WICHTIG! Wir posten nur noch etwas, das besonders auffällt oder eben besonders amüsant ist. Die meisten der Hacker-Idioten bekommen eh nur noch ein 403 oder eben ein 302! Wer auch hier gesperrt ist, landet mit seinem „Scheiss“ dann da, wo er hingehört, nämlich beim Klopapier! *LOL*

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

HIER NUN EIN PAAR PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom WOCHENENDE AB 26. SEPTEMBER 25!

Wie jedes Wochenende auch hier mal wieder unzählige dumme Hacking-Versuche, beginnend vom Wochenende ab dem 26 September.

Hier ein paar Auszüge dazu, dessen Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG an die MIT VERANTWORTLICHEN PROVIDER heute am Montag-Vormittag nun rausgehen:

MAIL NR. 1 – Hacker-Idiots from WEEKEND!

newoeste@gmail.com,renato@newoeste.com.br,mail-abuse@cert.br,buse@lacnic.net,virtua@virtua.com.br,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de

AS264321 – NEW OESTE TELECOMUNICACOES – AGAIN AND AGAIN EVERY WEEKEND! – VERY IGNORANT AND UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
newoeste@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
138.122.152.142 website*x.com – – [26/Sep/2025:15:56:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS28573 – Claro NXT Telecomunicacoes – AGAIN AND AGAIN EVERY WEEKEND! – VERY IGNORANT AND UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lacnic.net,virtua@virtua.com.br – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2804:14c:124:a2ac:9174:9a75:8d5c:d6d website*x.com – – [26/Sep/2025:16:06:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS51167 – Contabo GmbH – AGAIN AND AGAIN! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.195.87.55 website*x.com – – [27/Sep/2025:05:17:12 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-admin/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_5) Gecko/20100101 Firefox/128.0“

MAIL NR. 2 – Hacker-Idiots from WEEKEND!

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@virtualsolution.net,abuse@asiatech.ir,abuse@dianahost.com.bd,abuse@dianahost.com

AS14618 – Amazon.com, Inc. – HERE WITH 3 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
44.193.57.42 website*x.com – – [27/Sep/2025:05:33:10 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“
+
3.136.214.141 website*x.com – – [27/Sep/2025:06:01:59 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“
+
52.221.97.93 website*x.com – – [27/Sep/2025:12:48:29 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.138 Safari/537.36“

AS49367 – Seflow s.r.l. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualsolution.net
89.40.227.248 website*x.com – – [27/Sep/2025:06:15:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“

AS43754 – Asiatech Data Transmission company – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@asiatech.ir – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
46.245.76.52 website*x.com – – [27/Sep/2025:06:23:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

AS148993 – Diana Host Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@dianahost.com.bd
103.169.160.74 website*x.com – – [27/Sep/2025:06:37:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 3 – Hacker-Idiots from WEEKEND!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,admin@idcloudhost.com,abuse@ineonet.com

AS51167 – Contabo GmbH – NEXT ONE AT SATURDAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
207.180.203.50 website*x.com – – [27/Sep/2025:07:11:17 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS136052 – PT Cloud Hosting Indonesia – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@idcloudhost.com
103.31.38.163 website*x.com – – [27/Sep/2025:07:15:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

AS197492 – ALSATIS SERVICES SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ineonet.com
185.49.20.75 website*x.com – – [27/Sep/2025:07:28:58 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 4 – Hacker-Idiots from WEEKEND!

abuse@hetzner.com,abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@hudsonvalleyhost.com

Hudson Valley Host
abuse@hudsonvalleyhost.com
107.172.243.11 website*x.com – – [27/Sep/2025:07:35:38 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS24940 – Hetzner Online GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
abuse@hetzner.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
2a01:4f8:120:21e5::2 website*x.com – – [27/Sep/2025:07:42:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:128.0) Gecko/20100101 Firefox/128.0“

AS16509 – Amazon.com, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
13.50.0.57 website*x.com – – [27/Sep/2025:08:07:06 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.102 Safari/537.36“

MAIL NR. 5 – Hacker-Idiots from WEEKEND!

dmzhostabuse@gmail.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,abuse@cheapy.host

AS48090 – TECHOFF SRV LIMITED – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dmzhostabuse@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.178.110.155 website*x.de – – [27/Sep/2025:02:13:35 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
195.178.110.155 website*x.de – – [27/Sep/2025:02:13:35 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“

AS401120 – cheapy.host LLC – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.86.13 website*x.de – – [27/Sep/2025:05:09:49 +0200] „GET /index.php?option=com_adsmanager&task=upload&tmpl=component HTTP/1.0“ 302 – „-“ „ALittle Client“

AS141995 – Contabo Asia Private Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.233.83.146 website*x.de – – [27/Sep/2025:06:12:18 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
194.233.83.146 website*x.de – – [27/Sep/2025:06:12:19 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“

MAIL NR. 6 – Hacker-Idiots from WEEKEND!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,google-cloud-compliance@google.com, network-abuse@google.com,report@abuseradar.com

AS51167 – Contabo GmbH – NUMBER 3 AT SATURDAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!!!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
194.233.83.146 website*x.com – – [27/Sep/2025:03:39:49 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
194.233.83.146 website*x.com – – [27/Sep/2025:03:39:50 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.0“ 403 – „-“ „python-requests/2.27.1“
+
207.180.232.187 website*x.com – – [27/Sep/2025:05:43:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

AS396982 – Google LLC – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
35.240.215.118 website*x.com – – [27/Sep/2025:04:53:01 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F)“
35.240.215.118 website*x.com – – [27/Sep/2025:04:53:01 +0200] „GET /wordpress/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F)“
+
34.93.16.66 website*x.com – – [27/Sep/2025:06:11:20 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

AS55470 – Cyfuture India Pvt. Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
163.5.191.32 website*x.com – – [27/Sep/2025:06:04:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

MAIL NR. 7 – Hacker-Idiots from WEEKEND!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,IARPOC@Newfold.com, abuse@hidata.org,abuse@aminidc.com

AS16276 – OVH SAS – HERE WITH 2 IP´S! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY 1 ANSWER IN OUR ABUSE EMAILS! – NO MORE INFO!
51.195.68.11 website*x.com – – [27/Sep/2025:04:58:12 +0200] „GET /assets/images/accesson.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.195.68.11 website*x.com – – [27/Sep/2025:04:58:12 +0200] „GET /images/images/cache.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
+
15.235.207.224 website*x.com – – [27/Sep/2025:06:10:43 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

AS46606 – Unified Layer
IARPOC@Newfold.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.214.121.103 website*x.com – – [27/Sep/2025:05:35:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36“

AS197937 – Mizban Dadeh Roham Co – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hidata.org
185.222.163.90 website*x.com – – [27/Sep/2025:05:50:07 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0“

AS48147 – Asre Pardazeshe Ettelaate Amin Institute – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@aminidc.com
62.60.197.3 website*x.com – – [27/Sep/2025:06:17:42 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“

MAIL NR. 8 – Hacker-Idiots from WEEKEND!

abuse@hetzner.com,noc@imsbiz.com,pmaster@netvigator.com,abuse@le34.dk

AS4760 – HKT Limited – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@imsbiz.com
58.153.170.129 www.website*x.com – – [27/Sep/2025:05:15:55 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“
58.153.170.129 www.website*x.com – – [27/Sep/2025:05:15:56 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS24940 – Hetzner Online GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
abuse@hetzner.com – ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
2a01:4f9:3a:139d::2 www.website*x.com – – [27/Sep/2025:05:20:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:125.0.1) Gecko/20100101 Firefox/125.0.1“
2a01:4f9:3a:139d::2 www.website*x.com – – [27/Sep/2025:05:20:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“

AS31027 – GlobalConnect A/S – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@le34.dk
185.199.236.107 www.website*x.com – – [27/Sep/2025:05:24:27 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:126.0) Gecko/20100101 Firefox/126.0“
185.199.236.107 www.website*x.com – – [27/Sep/2025:05:24:27 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://www.website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 9 – Hacker-Idiots from WEEKEND!

alexnvis@gmail.com,abuse@reliablesite.net,hm-changed@vnnic.vn

AS197566 – Livady s.r.o. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
alexnvis@gmail.com
91.224.90.83 website*x.com – – [27/Sep/2025:06:25:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS23470 – ReliableSite.Net LLC – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@reliablesite.net – IS NOW ANSWERED IN OUR ABUSE EMAILS AND WILL GIVE MORE INFORMATION LATER! THIS IS VERY GOOD!
209.222.98.137 website*x.com – – [27/Sep/2025:06:45:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS135905 – VIETNAM POSTS AND TELECOMMUNICATIONS GROUP – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
VIETNAM AGAIN AND AGAIN EVERY DAY! VERY IGNORANT AND COMPLETE UNWANTED!!!
hm-changed@vnnic.vn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.166.182.115 website*x.com – – [27/Sep/2025:06:58:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13.3; rv:126.0) Gecko/20100101 Firefox/126.0“

MAIL NR. 10 – Hacker-Idiots from WEEKEND!

abuse.es@masorange.es,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,support@5gn.com.au

AS12479 – Orange Espagne SA – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse.es@masorange.es – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
85.50.156.240 website*x.com – – [27/Sep/2025:06:25:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.126 Safari/537.36 Edg/113.0.1774.50“

AS133480 – 5G NETWORK OPERATIONS PTY LTD – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@5gn.com.au – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
203.209.212.46 website*x.com – – [27/Sep/2025:08:36:40 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY 1 ANSWER IN OUR ABUSE EMAILS! – NO MORE INFO!
2001:41d0:701:1100::11e3 website*x.com – – [27/Sep/2025:09:22:35 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

MAIL NR. 11 – Hacker-Idiots from WEEKEND!

cert.opl@orange.com,abuse@cheapy.host,abuse@nybula.com

AS5617 – Orange Polska Spolka Akcyjna – 195.116.0.0/15 IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
cert.opl@orange.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.117.36.241 website*x.com – – [27/Sep/2025:13:38:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:127.0) Gecko/20100101 Firefox/127.0“

AS401120 – cheapy.host LLC – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /media/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
196.251.84.218 website*x.com – – [28/Sep/2025:01:13:02 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“

AS401116 – Nybula LLC – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@nybula.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:24 +0200] „GET /about.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:25 +0200] „GET /about.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:26 +0200] „GET /admin.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.117.250 website*x.com – – [28/Sep/2025:03:12:28 +0200] „GET /admin.php?action=p&api=p&path=p&token= HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Besonders AUFFÄLLIGE UND/ODER IGNORANTE PROVIDER sowie ständig immer wiederkehrende PROVIDER bzgl. unserer Abuse-Mails SIND DIESMAL ROT MARKIERT!

PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom SAMSTAG, 13. SEPTEMBER 25 BIS SONNTAG 15. SEPTEMBER 25!

Wie jedes Wochenende auch hier mal wieder unzählige dumme Hacking-Versuche, beginnend vom Samstag bis Sonntag. Hier ein paar Auszüge dazu, dessen Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG and die MIT VERANTWORTLICHEN PROVIDER heute am Montag-Vormittag nun rausgehen.

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Besonders AUFFÄLLIGE UND/ODER IGNORANTE PROVIDER sowie ständig immer wiederkehrende PROVIDER bzgl. unserer Abuse-Mails SIND DIESMAL ROT MARKIERT!

Hier ein paar Auszüge vom Freitag den 19.09.25 bis Sonntag, 21.09.25! Sämtlich Hacker-Idioten sind an die MIT VERANTWORTLICHEN PROVIDER gemeldet!

MAIL NR. 1 – Hacker-Idiots from SUNDAY!

abuse@vdsina.ru,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@datacamp.co.uk,abuse@lir.ae

AS48282 – Hosting technology LTD – VDSINA IS VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
88.218.60.84 website*x.com – – [21/Sep/2025:04:59:35 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE DUBIOUS WEBSITE BINANCE.COM!!!
172.190.23.78 website*x.com – – [21/Sep/2025:05:54:30 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS212238 – Datacamp Limited – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@datacamp.co.uk – ONLY ONE AUTOMATIC ANSWER, NO MORE INFO! THIS IS VERY POOR!
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:22 +0200] „GET / HTTP/1.0“ 301 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:23 +0200] „GET / HTTP/1.0“ 200 47887 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:25 +0200] „GET /.git/config HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:31 +0200] „GET /.aws/credentials HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:37 +0200] „GET /.env HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:42 +0200] „GET /config.js HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
84.20.18.75 website*x.com – – [21/Sep/2025:09:36:48 +0200] „GET /app.js HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“

AS216341 – OPTIMA LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lir.ae – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
AE AND RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
185.39.19.34 website*x.com – – [21/Sep/2025:09:39:04 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

MAIL NR. 2 – Hacker-Idiots from SUNDAY!

abuse@cyberfolks.ro

AS34358 – Cyber_Folks SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cyberfolks.ro – ONLY 1 ANSWER BUT NO MORE INFO IF THIS IS STOPPED!
Here are we have a 403 but when it´s a 200, this hacker-idiots start to try to hacking!!!
93.119.227.91 www.website*x.com – – [21/Sep/2025:01:33:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.4.2; en-us; SCH-I535 Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30“
93.119.227.91 www.website*x.com – – [21/Sep/2025:01:33:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Edge/16.16299“
93.119.227.91 www.website*x.com – – [21/Sep/2025:01:33:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko“

MAIL NR. 3 – Hacker-Idiots from SUNDAY!

ip-admin@fluxtelecom.com,abuse@virtualine.org,admin@lantek.ru,abuse@hostglobal.plus

AS6079 – RCN – HERE WITH 3 IP´S – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip-admin@fluxtelecom.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
Here are we have a 403 but when it´s a 200, this hacker-idiots start to try to hacking!!!
161.115.239.149 website*x.com – – [21/Sep/2025:01:59:43 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
161.115.239.242 website*x.com – – [21/Sep/2025:01:59:51 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/140.0.7339.16 Safari/537.36“
161.115.239.78 website*x.com – – [21/Sep/2025:02:00:29 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.com – [21/Sep/2025:01:57:34 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36“

AS49825 – Lantek LLC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@lantek.ru
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
195.211.77.142 website*x.com – – [21/Sep/2025:12:00:21 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36“

AS202306 – HOSTGLOBAL.PLUS LTD – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686; en-US) AppleWebKit/534.15 (KHTML, like Gecko) Ubuntu/10.10 Chromium/10.0.613.0 Chrome/10.0.613.0 Safari/534.15“
78.153.140.218 www.website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.111 Safari/537.36“
78.153.140.218 www.website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0C; .NET4.0E)“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 4.2.2; nl-nl; GT-I9505 Build/JDQ39) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Opera/9.80 (Windows NT 6.1; WOW64; U; en) Presto/2.10.289 Version/12.01“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 8_4_1 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H321 Safari/600.1.4“
78.153.140.218 www.website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 2.3.6; en-us; C5120 Build/GRK39F) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:17 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; WOW64; Trident/5.0; BOIE9;ENUSMSCOM)“
78.153.140.218 website*x.com – – [21/Sep/2025:14:43:18 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux x86_64; zh-TW; rv:1.8.1.11) Gecko/20071204 Ubuntu/7.10 (gutsy) Firefox/2.0.0.11“
and so on… and so on…!!! VERY UNSECURE PROVIDER!

MAIL NR. 4 – Hacker-Idiots from SUNDAY!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,ipas@cnnic.cn,qcloud_net_duty@tencent.com, tencent_idc@tencent.com

AS16276 – OVH SAS – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY 1 ANSWER BUT NO MORE INFO IF THIS IS STOPPED!
WE HAS REPORT THIS SO MANY TIMES AND OVH DOES NOTHING!!!
51.75.157.203 www.website*x.de – – [21/Sep/2025:04:45:01 +0200] „GET /admin.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 www.website*x.de – – [21/Sep/2025:04:45:02 +0200] „GET /about.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
+
51.75.157.203 website*x.com – – [21/Sep/2025:15:11:08 +0200] „GET /wp-content/plugins/simple-local-avatars/sldebar.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 website*x.com – – [21/Sep/2025:15:13:46 +0200] „GET /doors-test-article HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS132203 – Tencent Building, Kejizhongyi Avenue – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS! – ABUSE PER EMAIL IS STANDARD!!!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY REFERRER-SPAM AND/OR HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
49.51.178.45 www.website*x.de – – [21/Sep/2025:10:28:38 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

AS45090 – Shenzhen Tencent Computer Systems Company Limited – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS! – ABUSE PER EMAIL IS STANDARD!!!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY REFERRER-SPAM AND/OR HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
101.42.117.179 www.website*x.de – – [21/Sep/2025:10:57:21 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.de“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 5 – Hacker-Idiots from SUNDAY!

bucklog@proton.me,contact@proton.me,enterprise@protonmail.com,abuse@protonmail.com,info@galeonllc.ru,abuse-system@servermania.com,abuse@servermania.com

AS211590 – Bucklog SARL – AGAIN AND AGAIN SINCE MONTHS!!! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS ENTRY AT ARIN IS WRONG! – THIS IS VERY IGNORANT!
abuse@protonmail.com – IS TALKING BULLSHIT IN OUR ABUSE EMAILS! THIS IS VERY STUPID AND IGNORANT!
THE REGISTERED PROVIDER IS RESPONSIBLE, NOT THEIR CUSTOMER!
HERE WITH 2 IP´S!!!
185.177.72.23 www.website*x.com – – [21/Sep/2025:06:54:01 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Firefox/91.0“
185.177.72.23 www.website*x.com – – [21/Sep/2025:06:54:21 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:92.0) Gecko/20100101 Firefox/92.0“
+
185.177.72.13 www.website*x.com – – [21/Sep/2025:09:53:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15“
185.177.72.13 www.website*x.com – – [21/Sep/2025:09:53:52 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.62“

AS50340 – JSC Selectel – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@galeonllc.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! – THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
45.89.70.30 www.website*x.com – – [21/Sep/2025:07:47:01 +0200] „GET / HTTP/1.0“ 403 – „https://www.website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
45.89.70.30 www.website*x.com – – [21/Sep/2025:07:47:02 +0200] „GET / HTTP/1.0“ 403 – „https://www.website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

AS55286 – B2 Net Solutions Inc. – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-system@servermania.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! – THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
69.4.87.74 www.website*x.com – – [21/Sep/2025:08:30:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G930V Build/NRD90M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.125 Mobile Safari/537.36“
69.4.87.74 www.website*x.com – – [21/Sep/2025:08:30:33 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 10_3_1 like Mac OS X) AppleWebKit/603.1.30 (KHTML, like Gecko) Version/10.0 Mobile/14E304 Safari/602.1“
69.4.87.74 www.website*x.com – – [21/Sep/2025:08:30:33 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G930V Build/NRD90M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.125 Mobile Safari/537.36“

MAIL NR. 6 – Hacker-Idiots from SUNDAY!

abuse@lir.ae,noc@internet-webhosting.com,abuse@virtualine.org,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS216341 – OPTIMA LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lir.ae – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
AE AND RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
NEXT ONE TODAY WITH SAME IP!!! – HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
185.39.19.34 website*x.com – – [21/Sep/2025:02:08:40 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“

AS132241 – SKSA TECHNOLOGY SDN BHD – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@internet-webhosting.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:47 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:47 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:47 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:48 +0200] „GET /public/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:48 +0200] „GET /app/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.44 www.website*x.com – – [21/Sep/2025:04:49:48 +0200] „GET /web/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
+
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:50 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:50 +0200] „GET /crm/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:50 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:51 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [21/Sep/2025:15:05:51 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.com – – [21/Sep/2025:05:41:07 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; FreeBSD amd64; rv:54.0) Gecko/20100101 Firefox/54.0“

AS8075 – Microsoft Corporation – NEXT ONE TODAY!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
WE REPORT THIS SINCE WEEKS AND MICROSOFT DOES NOTHING!!!
4.225.220.46 website*x.com – – [21/Sep/2025:07:35:19 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 7 – Hacker-Idiots from SUNDAY!

abuse@virtualine.org,abuse@vdsina.ru

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.com – – [21/Sep/2025:04:12:43 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux x86_64; us; rv:1.9.1.19) Gecko/20110430 shadowfox/7.0 (like Firefox/7.0“

AS48282 – Hosting technology LTD – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
195.2.70.209 website*x.com – – [21/Sep/2025:13:37:38 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36“

MAIL NR. 8 – Hacker-Idiots from SUNDAY!

ip-admin@fluxtelecom.com,hostmaster@nic.ad.jp,ipas@cnnic.cn,tao.li@yun-idc.com,hong.meng@yun-idc.com

AS6079 – RCN – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip-admin@fluxtelecom.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
161.115.239.79 www.website*x.de – – [21/Sep/2025:04:40:29 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36“
161.115.239.171 website*x.de – – [21/Sep/2025:04:40:36 +0200] „GET / HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/140.0.7339.16 Safari/537.36“

AS2516 – KDDI CORPORATION – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
hostmaster@nic.ad.jp – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
240b:253:b422:5b00:993e:b8a6:3241:ae7a website*x.de – – [21/Sep/2025:08:20:34 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/82.0.0.0 Safari/537.36“

AS63199 – CDS Global Cloud Co., Ltd – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ipas@cnnic.cn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:39 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:42 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:45 +0200] „GET / HTTP/1.0“ 403 – „-“ „-“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:49 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:37:52 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:26 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:30 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:34 +0200] „GET / HTTP/1.0“ 403 – „-“ „-“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:37 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
2400:5280:403:6::c website*x.com – – [21/Sep/2025:08:55:40 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“

MAIL NR. 9 – Hacker-Idiots from SUNDAY!

prasad@akhurathacpl.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,qcloud_net_duty@tencent.com,tencent_idc@tencent.com,

AS58678 – Intech Online Private Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
prasad@akhurathacpl.com
103.209.18.96 website*x.com – – [21/Sep/2025:09:50:52 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/87.0.0.0 Safari/537.36“

AS8075 – Microsoft Corporation – NEXT ONE TODAY!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
WE REPORT THIS TYP OF STUPID HACKING-ATTEMPTS SINCE WEEKS AND MICROSOFT DOES NOTHING!!!
52.169.141.253 website*x.com – – [21/Sep/2025:10:39:27 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“

AS132203 – Tencent Building, Kejizhongyi Avenue – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
WE REPORT THIS REFERRER-SPAM SINCE WEEKS AND TENCENT DOES NOTHING!!!
43.166.242.189 www.website*x.com – – [21/Sep/2025:11:24:55 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 10 – Hacker-Idiots from SUNDAY!

admin@serveroffer.lt, abuse@serveroffer.lt, support@serveroffer.lt, info@serveroffer.lt,abuse@clouvider.net,abuse@us.leaseweb.com

AS209605 – UAB Host Baltic – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – NOW NO RESPONSE AGAIN… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
WE REPORT THIS SINCE MONTHS AND UAB Host Baltic DOES NOTHING!!!
91.224.92.127 www.website*x.com – – [21/Sep/2025:11:50:16 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0“
91.224.92.127 www.website*x.com – – [21/Sep/2025:11:50:16 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
91.224.92.127 www.website*x.com – – [21/Sep/2025:11:50:16 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.bing.com/“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0“

AS62240 – Clouvider – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@clouvider.net – – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
91.199.118.221 www.website*x.com – – [21/Sep/2025:12:14:37 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com“ „Mozilla/5.0 (compatible; GoParserBot/1.0)“

AS19148 – Leaseweb USA, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@us.leaseweb.com – IS ALWAYS ANSWERED AND STOP THIS HACKER-IDIOTS! – THIS IS VERY GOOD!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
23.81.59.19 www.website*x.com – – [21/Sep/2025:12:42:59 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“

MAIL NR. 11 – Hacker-Idiots from SUNDAY!

abuse@cloudflare.com,abuse@hathway.net,anti-spam@chinatelecom.cn,ipreport.sd@chinatelecom.cn

AS13335 – Cloudflare, Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cloudflare.com – RESPONSE WITH TICKET SYSTEM. STOP THE HACKER IDIOTS! THAT’S GOOD!!!
2a09:bac5:30d9:191::28:139 website*x.com – – [21/Sep/2025:12:32:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS17488 – Hathway IP Over Cable Internet – IS NOW COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hathway.net – FIRST ABUSE-MAIL TO THIS PROVIDER! WE´RE WAITING FOR ANSWER BUT WE WAITING NOT LONG TIME!
27.5.201.62 website*x.com – – [21/Sep/2025:12:43:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.0.0 Safari/537.36“

AS58519 – Cloud Computing Corporation – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
anti-spam@chinatelecom.cn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
182.43.70.143 website*x.com – – [21/Sep/2025:12:49:55 +0200] „GET / HTTP/1.0“ 403 – „http://www.website*x.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 1 – Hacker-Idiots from SATURDAY!

abuse@hostinode.com,abuse@lir.ae,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,

AS216099 – EMRE ANIL ARSLAN – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostinode.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a0f:85c1:b3c:1:fdb6:b70f:288e:f102 website*x.com – – [20/Sep/2025:05:39:36 +0200] „GET /assets/images/accesson.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0“
2a0f:85c1:b3c:1:fdb6:b70f:288e:f102 website*x.com – – [20/Sep/2025:05:39:38 +0200] „GET /accesson.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0“

AS216341 – OPTIMA LLC – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@lir.ae – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
185.39.19.97 website*x.com – – [20/Sep/2025:12:20:04 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“
185.39.19.97 website*x.com – – [20/Sep/2025:12:20:04 +0200] „GET / HTTP/1.0“ 403 – „https://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36“

AS40021 – Contabo Inc. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
157.173.205.208 website*x.com – – [20/Sep/2025:14:46:21 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“

MAIL NR. 2 – Hacker-Idiots from SATURDAY!

abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,

AS16276 – OVH SAS – NEXT ONE TODAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY ONE AUTOMATC ANSWER, NO MORE INFO! – ABUSE PER EMAIL IS STANDARD!!!
51.75.157.203 www.website*x.de – – [20/Sep/2025:05:05:51 +0200] „HEAD /wp-content/plugins/wordpress-corde/wordpresse-kore.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 www.website*x.de – – [20/Sep/2025:05:05:51 +0200] „HEAD /wp-content/plugins/wordpress-core/wordpress-core.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE DUBIOUS WEBSITE BINANCE.COM!!!
185.255.131.130 www.website*x.de – – [20/Sep/2025:11:44:12 +0200] „GET /wp-admin/css HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

MAIL NR. 3 – Hacker-Idiots from SATURDAY!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
40.85.188.15 website*x.com – – [20/Sep/2025:02:37:27 +0200] „GET /ioxi-o.php HTTP/1.0“ 302 – „-“ „-“

AS396982 – Google LLC – HERE WITH 4 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.62 Safari/537.36“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 16_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:45 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.140 Safari/537.36 Vivaldi/6.4.3160.47“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.86 Safari/537.36 Brave/1.62.162“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Android 13; Mobile; rv:124.0) Gecko/124.0 Firefox/124.0“
34.27.61.205 website*x.com – – [20/Sep/2025:03:07:46 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
+ Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!!!
34.76.174.199 website*x.com – – [20/Sep/2025:03:52:51 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
34.76.174.199 website*x.com – – [20/Sep/2025:03:52:51 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
+
34.14.2.1 www.website*x.com – – [20/Sep/2025:03:52:52 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
34.14.2.1 www.website*x.com – – [20/Sep/2025:03:52:53 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
+
34.38.235.62 website*x.com – – [20/Sep/2025:03:53:17 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36“
34.38.235.62 www.website*x.com – – [20/Sep/2025:03:53:19 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36“

AS12695 – LLC Digital Network – HERE WITH 2 IP´S – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
lir@di-net.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
2a00:1c48:8:224::1 website*x.com – – [20/Sep/2025:13:32:52 +0200] „GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.0“ 302 – „-“ „-“
2a00:1c48:8:224::1 website*x.com – – [20/Sep/2025:13:32:54 +0200] „POST /goform/setSysAdm HTTP/1.0“ 302 – „website*x.com/login.shtml“ „Mozilla/5.0 (Debian; Linux x86_64; rv:126.0) Gecko/20100101 Firefox/126.0“
… and so on… and so on… – VERY UNSECURE PROVIDER!!!
+
85.192.18.102 website*x.com – – [20/Sep/2025:13:32:54 +0200] „POST /account HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686; rv:126.0) Gecko/20100101 Firefox/126.0“
85.192.18.102 website*x.com – – [20/Sep/2025:13:32:54 +0200] „POST /user.action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0) AppleWebKit/537.36 (KHTML, like Gecko) Safari/113.0 Safari/537.36“
… and so on… and so on… – VERY UNSECURE PROVIDER!!!

MAIL NR. 4 – Hacker-Idiots from SATURDAY!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,ip.abuse@ril.com,

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
135.225.85.23 website*x.de – – [20/Sep/2025:04:02:58 +0200] „GET /abcd.php HTTP/1.0“ 302 – „-“ „-“
+
40.122.164.78 website*x.de – – [20/Sep/2025:06:50:05 +0200] „GET /.well-known/admin.php HTTP/1.0“ 403 – „-“ „-“
40.122.164.78 website*x.de – – [20/Sep/2025:06:50:05 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

AS55836 – Reliance Jio Infocomm Limited – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ip.abuse@ril.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
THIS IS NO GOOGLE-BOT!!! – Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!!!
2405:201:a004:a826:a409:8db6:5afb:580d website*x.de – – [20/Sep/2025:10:55:38 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)“
2405:201:a004:a826:a409:8db6:5afb:580d website*x.de – – [20/Sep/2025:10:55:39 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_0) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“

MAIL NR. 5 – Hacker-Idiots from SATURDAY!

qcloud_net_duty@tencent.com, tencent_idc@tencent.com, optout@internet-census.org, noc@internet-webhosting.com

AS211680 – NSEC – Sistemas Informaticos, S.A. – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
optout@internet-census.org – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
45.156.129.122 www.website*x.com – – [20/Sep/2025:09:48:04 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36“

AS132203 – Tencent Building, Kejizhongyi Avenue – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
170.106.161.78 www.website*x.com – – [20/Sep/2025:11:49:01 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

AS132241 – SKSA TECHNOLOGY SDN BHD – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
noc@internet-webhosting.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /crm/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /crm/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
103.8.27.27 www.website*x.com – – [20/Sep/2025:13:13:11 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“

MAIL NR. 6 – Hacker-Idiots from SATURDAY!

info@traffictransitsolution.us,google-cloud-compliance@google.com, network-abuse@google.com,abuse@as210558.net,abuse@zohocorp.com

AS26548 – PureVoltage Hosting Inc. – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@traffictransitsolution.us – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.10.167.19 website*x.com – – [20/Sep/2025:10:42:13 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE WE HAVE A SEARCH FOR UNSECURE .JS-FILES! WE HAVE REPORT THIS SO MANY TIMES BUT THIS IGNORANT PROVIDER DOES NOTHING!!!
35.192.58.240 website*x.com – – [20/Sep/2025:18:51:17 +0200] „GET /media/system/js/core.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
35.192.58.240 website*x.com – – [20/Sep/2025:18:51:18 +0200] „GET /wp-includes/js/jquery/jquery.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“

AS210558 – 1337 Services GmbH – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@as210558.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE DUBIOUS WEBSITE BINANCE.COM!!!
2.58.56.66 website*x.com – – [20/Sep/2025:21:30:58 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS2639 – ZOHO – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@zohocorp.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
8.39.54.150 www.website*x.com – – [20/Sep/2025:23:00:31 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
8.39.54.150 website*x.com – – [20/Sep/2025:23:00:31 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
8.39.54.150 www.website*x.com – – [20/Sep/2025:23:00:31 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
8.39.54.150 website*x.com – – [20/Sep/2025:23:00:32 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“

MAIL NR. 7 – Hacker-Idiots from SATURDAY!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,dmzhostabuse@gmail.com

AS51167 – Contabo GmbH – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE DUBIOUS WEBSITE BINANCE.COM!!!
62.169.20.151 website*x.com – – [20/Sep/2025:13:46:39 +0200] „GET /wp-admin/css/ HTTP/1.0“ 403 – „binance.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
135.225.112.207 website*x.com – – [20/Sep/2025:14:02:19 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
+
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:49 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:49 +0200] „GET /wp-trackback.php?d= HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:54 +0200] „GET /wp-activate.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:55 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:57 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:58 +0200] „GET /wp-config-sample.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:09:59 +0200] „GET /wp-config.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:01 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:02 +0200] „GET /wp-links-opml.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:03 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:04 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:05 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:06 +0200] „GET /wp-settings.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:08 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:09 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:10 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „-“
20.41.73.214 website*x.com – – [20/Sep/2025:15:10:10 +0200] „GET /saiga.php HTTP/1.0“ 302 – „-“ „-“

AS48090 – TECHOFF SRV LIMITED – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
dmzhostabuse@gmail.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.148.10.140 website*x.com – – [20/Sep/2025:14:06:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
45.148.10.140 website*x.com – – [20/Sep/2025:14:06:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“

MAIL NR. 8 – Hacker-Idiots from SATURDAY!

abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,qcloud_net_duty@tencent.com, tencent_idc@tencent.com,

AS141995 – Contabo Asia Private Limited – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
194.233.82.231 www.website*x.com – – [20/Sep/2025:15:35:42 +0200] „HEAD /_ignition/execute-solution HTTP/1.0“ 403 – „https://gbnadvisors.com/_ignition/execute-solution“ „Go-http-client/2.0“
194.233.82.231 www.website*x.com – – [20/Sep/2025:15:35:42 +0200] „GET /_ignition/execute-solution HTTP/1.0“ 403 – „https://gbnadvisors.com/_ignition/execute-solution“ „Go-http-client/2.0“

AS45090 – Shenzhen Tencent Computer Systems Company Limited – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
qcloud_net_duty@tencent.com – VERY ARROGANT AND IGNORANT IN OUR ABUSE EMAILS! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY REFERRER-SPAM AND/OR HACKER-IDIOTS EVERY DAY!!!
162.14.197.180 www.website*x.com – – [20/Sep/2025:17:21:00 +0200] „GET / HTTP/1.0“ 403 – „http://gbnadvisors.com“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

MAIL NR. 9 – Hacker-Idiots from SATURDAY!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse-reports@cloudzy.com,abuse-reports@vpnconsumer.com

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:16 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:16 +0200] „GET /wp-trackback.php?d= HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:22 +0200] „GET /wp-activate.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:24 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:27 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:28 +0200] „GET /wp-config-sample.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:29 +0200] „GET /wp-config.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:31 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:33 +0200] „GET /wp-links-opml.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:34 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:35 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:37 +0200] „GET /wp-settings.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:38 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:39 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:41 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „-“
20.41.72.233 website*x.com – – [20/Sep/2025:17:40:41 +0200] „GET /saiga.php HTTP/1.0“ 302 – „-“ „-“

AS14956 – RouterHosting LLC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-reports@cloudzy.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:17:58:48 +0200] „GET /wp-admin/network/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:17:59:20 +0200] „GET /wp-admin/js/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:17:59:51 +0200] „GET /wp-admin/images/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:00:57 +0200] „GET /wp-admin/css/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:01:40 +0200] „GET /wp-includes/SimplePie/Content/Type/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:01:45 +0200] „GET /wp-includes/Requests/Auth/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:01:58 +0200] „GET /wp-admin/css/colors/index.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:02:44 +0200] „GET /wp-content/languages/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:05 +0200] „GET /wp-content/upgrade/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:15 +0200] „GET /wp-content/IXR/index.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:46 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:50 +0200] „GET /wp-content/plugins/about.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:51 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:53 +0200] „GET /geju.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:55 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
2602:fa59:9:e3a::1 website*x.com – – [20/Sep/2025:18:03:57 +0200] „GET /wp.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS206092 – Internet Utilities Europe and Asia Limited – HERE WITH 8 IP´S!!! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-reports@vpnconsumer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
45.86.200.38 website*x.com – – [20/Sep/2025:23:32:16 +0200] „GET /.well-known/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-includes/assets/info.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-includes/class.api.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-includes/fonts/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /wp-admin/chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /autoload_classmap/bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.2 website*x.com – – [20/Sep/2025:23:32:18 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /special.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /assets/script.js.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /edit-tags.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /wp-admin/css/colors/sunrise/colors_95.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
45.86.200.16 website*x.com – – [20/Sep/2025:23:32:20 +0200] „GET /wp-includes/block-patterns/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-admin/maint/themes.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-content/plugins/seoplugins/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-includes/fonts/themes.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-content/themes/twentytwentytwo/assets/fonts/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /wp-includes/certificates/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /thumbs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /byp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.19 website*x.com – – [20/Sep/2025:23:32:22 +0200] „GET /blog/wp-includes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /assets/sandi-amir.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /assets/images/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /wp-content/plugins/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /js/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /simple/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /worm.PhP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /ext.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /delpaths.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /wp-includes/bk/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
45.86.200.33 website*x.com – – [20/Sep/2025:23:32:24 +0200] „GET /wp-content/plugins/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/twentytwentyfour/system_cache.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/sky-pro/js.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-includes/Text/wp-conflg.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/pridmag/waf_defender.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /theme.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-content/themes/twentytwentytwo/waf_defender.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /wp-admin/css/colors/coffee/index.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
45.86.200.41 website*x.com – – [20/Sep/2025:23:32:26 +0200] „GET /Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wsad.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /brutecp-3x-NETDRUG.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /nation.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wh/glass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /live/i.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wp-includes/js/codemirror/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wp-includes/wp_class_datlib.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
45.86.200.1 website*x.com – – [20/Sep/2025:23:32:28 +0200] „GET /wp-includes/js/tinymce/langs/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!
+
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/crystal/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/media/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/smilies/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/images/wlw/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/js/codemirror/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/js/plupload/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/PHPMailer/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /wp-includes/sitemaps/providers/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
45.86.200.9 website*x.com – – [20/Sep/2025:23:32:30 +0200] „GET /cache-wordpress/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
… and so on… and so on… VERY IGNORANT AND VERY UNSECURE PROVIDER!!!

MAIL NR. 10 – Hacker-Idiots from SATURDAY!

anti-spam@chinatelecom.cn,qcloud_net_duty@tencent.com,tencent_idc@tencent.com,abuse@cheapy.host,abuse@kilinov.com

AS134756 – CHINANET Nanjing Jishan IDC network – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IRT-ACEVILLEPTELTD-SG – TENCENT
anti-spam@chinatelecom.cn – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
DAILY REFERRER-SPAM S H I T TO THE UNWANTED WEBSITE gbnadvisors.com!!!
CHINA IS COMPLET UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
117.62.235.53 website*x.com – – [20/Sep/2025:15:48:37 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1“

AS401120 – cheapy.host LLC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.84.57 website*x.com – – [20/Sep/2025:19:49:13 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.84.57 website*x.com – – [20/Sep/2025:19:49:39 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.84.57 www.website*x.com – – [20/Sep/2025:19:50:04 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.84.57 www.website*x.com – – [20/Sep/2025:19:50:29 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“

AS12695 – LLC Digital Network – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@kilinov.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLET UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:01 +0200] „GET /index.php?module=users/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1.1 Safari/605.1.15“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /solr/admin/cores?wt=json HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686; rv:122.0) Gecko/20100101 Firefox/122.0“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „POST /dashboard/uploadID.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „POST /pandora_console/ajax.php?page=include/ajax/update_manager.ajax&upload_file=true HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /index.php?module=users/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /index.php?module=users/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:02 +0200] „GET /index.php?app=main&inc=core_auth&route=login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
85.192.18.102 website*x.com – – [20/Sep/2025:18:34:03 +0200] „GET /login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:133.0) Gecko/20100101 Firefox/133.0“
… and so on… and so on…!!! VERY UNSECURE AND VERY UNWANTED PROVIDER!!!

MAIL NR. 11 – Hacker-Idiots from SATURDAY!

abuse@vdsina.ru,ip@biterika.ru,abuse@cheapy.host,antispam_zjnoc@163.com

AS48282 – Hosting technology LTD – VDSINA IS VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
89.110.99.186 website*x.com – – [20/Sep/2025:19:48:35 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
89.110.99.186 website*x.com – – [20/Sep/2025:19:48:36 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“

AS35048 – Biterika Group LLC – BITERIKA IS ALSO VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!!!
ip@biterika.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
HERE ARE WE HAVE A 403 BUT WHEN IT´S A 200, THIS HACKER-IDIOTS START TO TRY TO HACKING!!!
46.8.106.197 website*x.com – – [20/Sep/2025:19:48:36 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
+
46.8.223.56 website*x.com – – [20/Sep/2025:19:48:36 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“
46.8.223.56 website*x.com – – [20/Sep/2025:19:48:36 +0200] „GET / HTTP/1.0“ 403 – „http://website*x.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0“

AS58461 – CT-HangZhou-IDC – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
antispam_zjnoc@163.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
CHINA IS COMPLETE UNWANTED AND ALSO COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
183.134.59.134 website*x.com – – [20/Sep/2025:23:54:08 +0200] „GET /favicon.ico HTTP/1.0“ 403 – „-“ „Dalvik/2.1.0 (Linux; U; Android 9.0; ZTE BA520 Build/MRA58K)“
183.134.59.134 website*x.com – – [20/Sep/2025:23:55:15 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.1; MX5 Build/LMY47I; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/53.0.2785.49 Mobile MQQBrowser/6.2 TBS/043220 Safari/537.36 MicroMessenger/6.5.8.1060 NetType/WIFI Language/zh_CN“
183.134.59.134 website*x.com – – [20/Sep/2025:23:55:40 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:57:57 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11) AppleWebKit/601.1.27 (KHTML, like Gecko) Chrome/47.0.2526.106 Safari/601.1.27“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:49 +0200] „GET /mobile HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:49 +0200] „GET /chatIndex HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:50 +0200] „GET /index.html HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:51 +0200] „GET /eapp_1014_172 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“
183.134.59.134 website*x.com – – [20/Sep/2025:23:58:52 +0200] „GET /jx.html HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2) Gecko/20021126“

MAIL NR. 1 – Hacker-Idiots from FRIDAY AFTERNOON!

report@abuseradar.com,reports@magnates.co.za, abuse@hostuniversal.com.au,aamakhfudh@adisanggoro.sch.id,

AS214209 – Internet Magnate (Pty) Ltd – NOW VERY UNWANTED!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
89.213.174.251 website*x.com – – [19/Sep/2025:12:53:28 +0200] „GET /wp-editor.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS136557 – Host Universal Pty Ltd – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostuniversal.com.au – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:28 +0200] „GET /wp-includes/id3/license.txt/xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:28 +0200] „GET /wp-includes/id3/license.txt/blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:29 +0200] „GET /wp-includes/id3/license.txt/web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:30 +0200] „GET /wp-includes/id3/license.txt/wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:31 +0200] „GET /wp-includes/id3/license.txt/wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:31 +0200] „GET /wp-includes/id3/license.txt/2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:32 +0200] „GET /wp-includes/id3/license.txt/2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:33 +0200] „GET /wp-includes/id3/license.txt/2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:33 +0200] „GET /wp-includes/id3/license.txt/shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:34 +0200] „GET /wp-includes/id3/license.txt/wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:35 +0200] „GET /wp-includes/id3/license.txt/test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:35 +0200] „GET /wp-includes/id3/license.txt/site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
45.248.76.228 website*x.com – – [19/Sep/2025:14:19:36 +0200] „GET /wp-includes/id3/license.txt/cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS141892 – CV Andhika Pratama Sanggoro – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
aamakhfudh@adisanggoro.sch.id – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.186.31.45 website*x.com – – [19/Sep/2025:15:53:33 +0200] „GET / HTTP/1.0“ 403 – „-“ „Go-http-client/1.1“
103.186.31.45 website*x.com – – [19/Sep/2025:15:53:33 +0200] „GET //woh.php HTTP/1.0“ 302 20 „-“ „Go-http-client/1.1“

MAIL NR. 2 – Hacker-Idiots from FRIDAY AFTERNOON!

mail@proton66.ru, abuse@att.net,abuse@rt.ru,abuse@charter.net

AS198953 – Proton66 OOO – AGAIN AND AGAIN! – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
mail@proton66.ru – IS TALKING BULLSHIT IN OUR ABUSE EMAILS! THIS IS VERY STUPID AND IGNORANT!
RUSSIA IS COMPLET UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
45.135.232.10 website*x.com – – [19/Sep/2025:16:55:12 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

AS7018 – AT&T Enterprises, LLC – VERY UNWANTED AND IGNORANT PROVIDER!!! – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@att.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
99.104.223.26 website*x.com – – [19/Sep/2025:16:55:17 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS12389 – PJSC Rostelecom – VERY UNWANTED AND IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@rt.ru – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
RUSSIA IS COMPLETE UNWANTED AND COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS EVERY DAY!!!
95.189.48.6 website*x.com – – [19/Sep/2025:16:55:22 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS20115 – Charter Communications LLC – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@charter.net – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
75.135.92.147 website*x.com – – [19/Sep/2025:16:55:49 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

MAIL NR. 3 – Hacker-Idiots from FRIDAY AFTERNOON!

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@ovh.net, abuse@ovh.us, abuse@ovh.ca,abuse@datacamp.co.uk,

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:13 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:13 +0200] „GET /error.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:28 +0200] „GET /hk.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:43 +0200] „GET /cjfuns.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:29:58 +0200] „GET /granary.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:13 +0200] „GET /aa21.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:29 +0200] „GET /akk.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:43 +0200] „GET /alpa.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:30:58 +0200] „GET /finny.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:13 +0200] „GET /aa18.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:28 +0200] „GET /bitch.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:43 +0200] „GET /file21.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:31:58 +0200] „GET /anan.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:14 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:28 +0200] „GET /acacia.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:43 +0200] „GET /rrr.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:32:59 +0200] „GET /folte.php HTTP/1.0“ 302 – „-“ „-“
40.113.19.56 website*x.com – – [19/Sep/2025:18:33:14 +0200] „GET /ssss.php HTTP/1.0“ 403 – „-“ „-“
… and so on… and so on… VERY UNSECURE PROVIDER!

AS16276 – OVH SAS – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@ovh.net – ONLY ONE AUTOMATIC ANSWER, NO MORE INFO! – ABUSE PER EMAIL IS STANDARD!!!
51.75.157.203 website*x.com – – [19/Sep/2025:21:02:01 +0200] „HEAD /wp-content/plugins/wordpress-corde/wordpresse-kore.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 website*x.com – – [19/Sep/2025:21:02:01 +0200] „HEAD /wp-content/plugins/wordpress-core/wordpress-core.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 4 – Hacker-Idiots from FRIDAY AFTERNOON!

abuse@datacamp.co.uk,google-cloud-compliance@google.com, network-abuse@google.com

AS212238 – Datacamp Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@datacamp.co.uk – ONLY ONE AUTOMATIC ANSWER, NO MORE INFO! – THIS IS VERY BAD!
138.199.10.11 website*x.com – – [19/Sep/2025:23:59:41 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/91.0.0.0 Safari/537.36“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY! – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/124.0.6367.56 Mobile/15E148 Safari/604.1“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.140 Safari/537.36 Vivaldi/6.4.3160.47“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:26 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 11; en-US; V2027) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/89.0.4389.116 UCBrowser/13.4.0.1306 Mobile Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; U; Android 11; en-US; V2027) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/89.0.4389.116 UCBrowser/13.4.0.1306 Mobile Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36“
34.23.229.85 website*x.com – – [19/Sep/2025:23:47:27 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.56 Mobile Safari/537.36“

Schauen wir nun mal, welche Provider nun verantwortungsbewusst reagieren!

Letztes Wochende, 13. und 14. September 24!

Sehr amüsant auch hier mal wieder, es wird trotz einem 403 immer und immer wieder über die gleichen IP´S versucht:

MAIL NR. 1 SATURDAY

google-cloud-compliance@google.com, network-abuse@google.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@datacamp.co.uk,abuse@cdn77.com

AS396982 – Google LLC – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD /wp HTTP/1.0“ 403 – „http://www.website*x.com/wp“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.86 Safari/537.36 Brave/1.62.162“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD /main HTTP/1.0“ 403 – „http://www.website*x.com/main“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD / HTTP/1.0“ 403 – „http://www.website*x.com/“ „Mozilla/5.0 (iPad; CPU OS 16_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:10 +0200] „HEAD /old HTTP/1.0“ 403 – „http://www.website*x.com/old“ „Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.56 Mobile Safari/537.36“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:11 +0200] „HEAD /bk HTTP/1.0“ 403 – „http://www.website*x.com/bk“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:11 +0200] „HEAD /bc HTTP/1.0“ 403 – „http://www.website*x.com/bc“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:115.0) Gecko/20100101 Firefox/115.0“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:11 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „http://www.website*x.com/wordpress“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0“
104.196.254.105 website*x.com – – [13/Sep/2025:00:01:12 +0200] „HEAD /new HTTP/1.0“ 403 – „http://www.website*x.com/new“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.140 Safari/537.36 Vivaldi/6.4.3160.47“
+
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:00 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 13; SAMSUNG SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/24.0 Chrome/120.0.6099.144 Mobile Safari/537.36“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.200 YaBrowser/24.1.0.0 Safari/537.36“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0“
34.74.187.253 website*x.com – – [13/Sep/2025:00:34:01 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
135.225.82.247 website*x.com – – [13/Sep/2025:00:58:59 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „-“

AS212238 – Datacamp Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:49 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:50 +0200] „GET /.well-known/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /fai.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /.wp/wso.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /core.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:51 +0200] „GET /robots.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
149.36.48.67 website*x.com – – [13/Sep/2025:03:51:52 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“

MAIL NR. 2 SATURDAY

abuse@virtualine.org,cybersecurity_abuse@globe.com.ph,abuse@globe.com.ph,shivacable7@gmail.com,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.55.98.93 website*x.de – – [13/Sep/2025:03:40:43 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Java/1.6.0_13“

AS132199 – Globe Telecom Inc. – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
222.127.250.71 website*x.de – – [13/Sep/2025:08:13:03 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/11.0.0.0 Safari/537.36“

AS146890 – SHARVA TELENET PRIVATE LIMITED. – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
103.173.21.84 website*x.de – – [13/Sep/2025:08:21:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/74.0.0.0 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.169.148.78 website*x.de – – [13/Sep/2025:13:36:34 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 3 SATURDAY

abuse@cheapy.host,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,gestionip.ft@orange.com,abuse@orange.fr

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.72.57 website*x.com – – [13/Sep/2025:05:03:26 +0200] „GET /emergency.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.60 Safari/537.36“
196.251.72.57 website*x.com – – [13/Sep/2025:05:03:52 +0200] „GET /emergency.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.60 Safari/537.36“
196.251.72.57 www.website*x.com – – [13/Sep/2025:05:04:17 +0200] „GET /emergency.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.60 Safari/537.36“
196.251.72.57 www.website*x.com – – [13/Sep/2025:05:04:42 +0200] „GET /emergency.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.60 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
20.231.250.227 website*x.com – – [13/Sep/2025:07:44:02 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
+
52.169.141.112 website*x.com – – [13/Sep/2025:11:40:40 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“

AS3215 – Orange S.A. – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
90.70.97.160 website*x.com – – [13/Sep/2025:09:44:08 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/14.0.0.0 Safari/537.36“

MAIL NR. 4 SATURDAY

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,ipadmin@cableonda.net,abuse@ovh.net,abuse@awasr.com

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.178.193.251 website*x.de – – [13/Sep/2025:02:01:50 +0200] „GET /gg.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:05 +0200] „GET /aaaa.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:20 +0200] „GET /pp.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:35 +0200] „GET /blurbs8.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:02:50 +0200] „GET /wp-gr.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:05 +0200] „GET /dex.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:20 +0200] „GET /bin.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:36 +0200] „GET /filemanager.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:03:51 +0200] „GET /sad.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:06 +0200] „GET /bqcheck.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:21 +0200] „GET /atomlib.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:36 +0200] „GET /jga.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:04:51 +0200] „GET /sarang.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:06 +0200] „GET /bless3.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:21 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:36 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:05:51 +0200] „GET /cf.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:06 +0200] „GET /yzkvrell.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:21 +0200] „GET /13.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:36 +0200] „GET /witmm.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:06:51 +0200] „GET /bv3.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:06 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:21 +0200] „GET /3.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:36 +0200] „GET /unity.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:07:51 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:08:06 +0200] „GET /kk.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:08:21 +0200] „GET /wander.php HTTP/1.0“ 302 – „-“ „-“
52.178.193.251 website*x.de – – [13/Sep/2025:02:08:36 +0200] „GET /gold.php HTTP/1.0“ 302 – „-“ „-“
+
52.178.159.75 www.website*x.de – – [13/Sep/2025:02:50:35 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“

AS18809 – Cable Onda – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
190.140.85.245 www.website*x.de – – [13/Sep/2025:02:20:29 +0200] „GET /wp-content/plugins/si-contact-form/captcha/securimage_show.php?prefix=hDEyM1Z6VlofDQfT HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.43“

AS16276 – OVH SAS – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
145.239.10.137 website*x.de – – [13/Sep/2025:03:08:27 +0200] „GET /jos.php HTTP/1.0“ 302 – „http://website*x.de/jos.php“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Mobile/15E148 Safari/604.1“

AS204170 – Awaser Oman LLC – AGAIN AND AGAIN!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
81.161.80.247 www.website*x.de – – [13/Sep/2025:11:04:08 +0200] „GET /wp-content/plugins/si-contact-form/captcha/securimage_show.php?prefix=AM7f4shF9H4aiXxV HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.43“

MAIL NR. 5 SATURDAY

abuse@virtualine.org,admin@frantech.ca,fdias@frantech.ca,abuse@cheapy.host,

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.55.98.93 website*x.de – – [13/Sep/2025:04:25:00 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 12_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/75.0.3770.103 Mobile/15E148 Safari/605.1“

AS53667 – FranTech Solutions – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
104.244.72.17 website*x.de – – [13/Sep/2025:10:16:49 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
104.244.72.17 website*x.de – – [13/Sep/2025:10:17:19 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“
104.244.72.17 website*x.de – – [13/Sep/2025:10:18:21 +0200] „POST /wp-json/sure-triggers/v1/automation/action HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36“
104.244.72.17 website*x.de – – [13/Sep/2025:10:19:02 +0200] „GET / HTTP/1.0“ 403 – „http://www.google.com.hk“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:56:59 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.de – – [13/Sep/2025:11:57:10 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 6 SATURDAY

abuse-reports@vpnconsumer.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de, mail@proton66.ru,mansur@idc.md

AS3257 – GTT Communications Inc. – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wp-includes/ID3/license.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /feed/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
203.188.183.31 website*x.com – – [13/Sep/2025:07:51:53 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“

AS51167 – Contabo GmbH – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
164.68.102.93 website*x.com – – [13/Sep/2025:10:45:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.2277.83“
164.68.102.93 website*x.com – – [13/Sep/2025:10:45:44 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.130 Safari/537.36“
164.68.102.93 website*x.com – – [13/Sep/2025:10:45:44 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.2210.133“

AS198953 – Proton66 OOO – AGAIN AND AGAIN EVERY DAY!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
RUSSIA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – TO MANY HACKER-IDIOTS EVERY DAY!
45.135.232.10 website*x.com – – [13/Sep/2025:10:48:02 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS1547 – INTERDNESTRKOM – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
95.153.102.1 website*x.com – – [13/Sep/2025:10:48:11 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

MAIL NR. 7 SATURDAY

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,info@smartlink-isp.com,abuse@slt.lk

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.169.188.222 website*x.com – – [13/Sep/2025:11:13:19 +0200] „GET /wp- HTTP/1.0“ 403 – „-“ „-“
52.169.188.222 website*x.com – – [13/Sep/2025:11:13:19 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „-“
+
135.225.82.247 website*x.com – – [13/Sep/2025:02:56:41 +0200] „GET /akc.php HTTP/1.0“ 302 – „-“ „-“

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 website*x.com – – [13/Sep/2025:11:16:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 website*x.com – – [13/Sep/2025:11:16:25 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS9329 – Sri Lanka Telecom Internet – VERY UNWANTED!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:32 +0200] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:32 +0200] „GET /wp-content/plugins/WordPressCore-1/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:33 +0200] „GET /wp-content/themes/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:33 +0200] „GET /wp-content/plugins/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:33 +0200] „GET /wp-includes/images/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:34 +0200] „GET /wp-includes/widgets/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:34 +0200] „GET /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:35 +0200] „GET /wp-content/plugins/HelloDollyV2-1/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:35 +0200] „GET /wp-content/themes/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:35 +0200] „GET /wp-content/plugins/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:36 +0200] „GET /wp-includes/images/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:36 +0200] „GET /wp-includes/widgets/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 website*x.com – – [13/Sep/2025:09:59:37 +0200] „GET /wp-content/plugins/HelloDollyV2_ncvt/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“

MAIL NR. 8 SATURDAY

hostmaster@twnic.tw,abuse@hinet.net,david.figueroa@codisert.com.co,zhaoyz3@chinaunicom.cn,oo@public.hh.nm.cn,hqs-ipabuse@chinaunicom.cn

AS17421 – Mobile Business Group – AGAIN AND AGAIN!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
221.120.4.43 website*x.com – – [13/Sep/2025:10:48:23 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

AS3356 – Level 3 Parent, LLC – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
170.238.239.59 website*x.com – – [13/Sep/2025:10:48:27 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

AS4837 – CHINA UNICOM China169 Backbone – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
CHINA IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – TO MANY HACKER-IDIOTS EVERY DAY!
116.114.84.246 website*x.com – – [13/Sep/2025:10:48:38 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0“

MAIL NR. 9 SATURDAY

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,abuse@ito.gov.ir

AS58224 – Iran Telecommunication Company PJS – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
IRAN IS VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES! – TO MANY HACKER-IDIOTS EVERY DAY!
2.191.6.136 website*x.com – – [13/Sep/2025:10:48:43 +0200] „GET /wp-login.php?wp_lang=en_US HTTP/1.0“ 302 20 „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
172.190.142.176 website*x.com – – [13/Sep/2025:13:03:35 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:03:35 +0200] „GET /pinak.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:03:50 +0200] „GET /mr.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:04:05 +0200] „GET /pm.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:04:20 +0200] „GET /vxrl.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:04:35 +0200] „GET /shorw.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:04:50 +0200] „GET /gifclass.php HTTP/1.0“ 403 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:04:50 +0200] „GET /orm.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:05:05 +0200] „GET /gmo.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:05:20 +0200] „GET /ioxi2.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:05:35 +0200] „GET /MARIJUANA.php HTTP/1.0“ 302 – „-“ „-“
172.190.142.176 website*x.com – – [13/Sep/2025:13:05:50 +0200] „GET /file17.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on! VERY UNSECURE PROVIDER!!!

MAIL NR. 10 SATURDAY

info@smartlink-isp.com,noc@perfectip.net,abuse@worldhost.group

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 www.website*x.de – – [13/Sep/2025:13:54:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 www.website*x.de – – [13/Sep/2025:13:54:54 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS199404 – WHG Hosting Services Ltd – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /new/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /account/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /dash/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /core/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /laravel/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /new/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /dash/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 www.website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /account/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“
195.250.21.212 website*x.com – – [13/Sep/2025:15:26:58 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64)“

AS22439 – Perfect International, Inc – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
THIS IS NOT THE GOOGLE-BOT!!! THIS IS A VERY STUPID HACKER-IDIOT! – UNSECURE PROVIDER!!!
70.36.120.125 www.website*x.com – – [13/Sep/2025:15:31:02 +0200] „GET /system/storage/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“
70.36.120.125 www.website*x.com – – [13/Sep/2025:15:31:02 +0200] „GET /system/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“
70.36.120.125 www.website*x.com – – [13/Sep/2025:15:31:02 +0200] „GET /storage/logs/error.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; Googlebot/2.1 +http://www.googlebot.com/bot.html)“

MAIL NR. 11 SONNTAG

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@fasthosts.co.uk,google-cloud-compliance@google.com, network-abuse@google.com

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOP THIS HACKER-IDIOTS!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-admin/index.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /admin.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /dashboard HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /user-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /signin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /portal HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /login.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /secret HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /enter HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /admin-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /panel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /adminpanel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:40 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
3.109.58.23 website*x.com – – [14/Sep/2025:03:01:41 +0200] „GET /my-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“

AS8560 – IONOS SE – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-admin/index.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /wp-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /enter HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /panel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /dashboard HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /admin-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:26 +0200] „GET /login.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /user-login HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /admin.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /secret HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /signin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:27 +0200] „GET /portal HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:28 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:28 +0200] „GET /my-admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
77.68.123.43 website*x.com – – [14/Sep/2025:03:17:28 +0200] „GET /adminpanel HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“

AS396982 – Google LLC – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!
HERE THIS VERY STUPID HACKER-IDIOT IS SEARCH FOR UNSECURE .JS-FILES!!!
34.56.168.155 website*x.com – – [14/Sep/2025:07:35:21 +0200] „GET /media/system/js/core.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
34.56.168.155 website*x.com – – [14/Sep/2025:07:35:21 +0200] „GET /wp-includes/js/jquery/jquery.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“

MAIL NR. 12 SONNTAG

abuse@m247.ro, abuse@virtualine.org

AS9009 – M247 Europe SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
193.176.86.134 website*x.de – – [14/Sep/2025:14:24:50 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; rv:91.0) Gecko/20100101 Firefox/91.0“

AS214943 – Railnet LLC – HERE WITH 2 IP´s! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.93 website*x.de – – [14/Sep/2025:03:26:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „msnbot/1.0 ( http://search.msn.com/msnbot.htm)“
+
213.209.157.253 website*x.de – – [14/Sep/2025:13:35:48 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 9; EML-L29) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36“

MAIL NR. 13 SONNTAG

abuse@h2.nexus,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS215730 – H2NEXUS LTD – HERE WITH 2 IP´S!!! – VERY UNWANTED AND COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.prod.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (SS; Linux i686; rv:124.0) Gecko/20100101 Firefox/124.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.development.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686; rv:125.0) Gecko/20100101 Firefox/125.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:22 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env.prod HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env.old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env_1 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/117.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /.env.save HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:23 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Fedora; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:24 +0200] „GET /.env_sample HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.4 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:24 +0200] „GET /.env.stage HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.3 Mobile/15E148 Safari/604.1“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.dev.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Kubuntu; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.www HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (CentOS; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.website*x HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:25 +0200] „GET /.env.live HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:26 +0200] „GET /.env. HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:26 +0200] „GET /.env.bak HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:21:26 +0200] „GET /.env.dev HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0) AppleWebKit/537.36 (KHTML, like Gecko) Safari/100.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:25:01 +0200] „GET /?subject=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-subject%27%29%3E&sticky=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-sticky%27%29%3E&ns=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-ns%27%29%3E&history=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-history%27%29%3E&category_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-category_id%27%29%3E&metakeyselect=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-metakeyselect%27%29%3E&copy=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-copy%27%29%3E&product_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-product_id%27%29%3E&status=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-status%27%29%3E&cat=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-cat%27%29%3E&list=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-list%27%29%3E&val=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-val%27%29%3E&what=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-what%27%29%3E&group_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-group_id%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Safari/605.1.15“
87.120.93.78 website*x.com – – [14/Sep/2025:04:25:01 +0200] „GET /?i=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-i%27%29%3E&database=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-database%27%29%3E&tax_input=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tax_input%27%29%3E&secret=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-secret%27%29%3E&mod=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-mod%27%29%3E&s=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-s%27%29%3E&stage=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-stage%27%29%3E&time=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-time%27%29%3E&new=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-new%27%29%3E&api_key=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-api_key%27%29%3E&invalid=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-invalid%27%29%3E&db=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-db%27%29%3E&upload=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-upload%27%29%3E&tablename=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tablename%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36“
87.120.93.78 website*x.com – – [14/Sep/2025:04:25:01 +0200] „GET /?rememberme=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-rememberme%27%29%3E&module=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-module%27%29%3E&comment_ID=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-comment_ID%27%29%3E&client_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-client_id%27%29%3E&noheader=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-noheader%27%29%3E&del=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-del%27%29%3E&media=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-media%27%29%3E&user_name=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-user_name%27%29%3E&country=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-country%27%29%3E&phone=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-phone%27%29%3E&sidebar=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-sidebar%27%29%3E&version=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-version%27%29%3E&widget_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-widget_id%27%29%3E&class=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-class%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0“
and so on… and so on…!!! VERY UNSECURE PROVIDER!!!
+
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.development.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686; rv:130.0) Gecko/20100101 Firefox/130.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.prod HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Ubuntu; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.prod.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Knoppix; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.dev.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.production HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (ZZ; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:15:30 +0200] „GET /.env.production.local HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.0.0 Safari/537.36“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?option=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-option%27%29%3E&server=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-server%27%29%3E&admin=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-admin%27%29%3E&create=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-create%27%29%3E&template=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-template%27%29%3E&number=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-number%27%29%3E&lastname=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-lastname%27%29%3E&multi_number=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-multi_number%27%29%3E&size=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-size%27%29%3E&tax=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tax%27%29%3E&sql=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-sql%27%29%3E&show_sticky=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-show_sticky%27%29%3E&attachments=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-attachments%27%29%3E&_method=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-_method%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 Macintosh Intel Mac OS X 10_15_7 AppleWebKit/605.1.15 KHTML like Gecko Version/18.4 Safari/605.1.15“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?edit-menu-item=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-edit-menu-item%27%29%3E&error=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-error%27%29%3E&post_title=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-post_title%27%29%3E&x=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-x%27%29%3E&down=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-down%27%29%3E&state=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-state%27%29%3E&data=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-data%27%29%3E&auth=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-auth%27%29%3E&themes=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-themes%27%29%3E&captcha=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-captcha%27%29%3E&nickname=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-nickname%27%29%3E&allusers=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-allusers%27%29%3E&color=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-color%27%29%3E&path=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-path%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Debian; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?redirect=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-redirect%27%29%3E&linkcheck=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-linkcheck%27%29%3E&port=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-port%27%29%3E&password=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-password%27%29%3E&target=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-target%27%29%3E&method=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-method%27%29%3E&note=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-note%27%29%3E&amount=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-amount%27%29%3E&set=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-set%27%29%3E&q=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-q%27%29%3E&select=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-select%27%29%3E&cid=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-cid%27%29%3E&tag=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tag%27%29%3E&keyword=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-keyword%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/118.0“
94.156.232.48 website*x.com – – [14/Sep/2025:06:23:46 +0200] „GET /?t=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-t%27%29%3E&comment=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-comment%27%29%3E&post_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-post_id%27%29%3E&postid=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-postid%27%29%3E&config=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-config%27%29%3E&login=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-login%27%29%3E&paged=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-paged%27%29%3E&go=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-go%27%29%3E&tag_ID=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-tag_ID%27%29%3E&user_login=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-user_login%27%29%3E&part=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-part%27%29%3E&preview_id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-preview_id%27%29%3E&_ajax_nonce=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-_ajax_nonce%27%29%3E&widget-id=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss-widget-id%27%29%3E HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134“
and so on… and so on…!!! VERY UNSECURE PROVIDER!!!

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S!!! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
40.69.93.192 website*x.de – – [14/Sep/2025:03:54:30 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
+
135.225.82.247 website*x.de – – [14/Sep/2025:04:07:20 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 14 SONNTAG

abuse@m247.ro,abuse@virtualine.org,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS214943 – Railnet LLC – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
213.209.157.253 website*x.de – – [14/Sep/2025:02:53:32 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 YaBrowser/19.3.1.828 Yowser/2.5 Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.178.159.75 website*x.de – – [14/Sep/2025:02:55:52 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
52.178.159.75 www.website*x.de – – [14/Sep/2025:02:56:23 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“

AS9009 – M247 Europe SRL – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
ALWAYS ANSWERED IN OUR ABUSE EMAILS! THIS IS VERY GOOD!
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:39 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:39 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /wp-content/1.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /wp-content/themes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:40 +0200] „GET /text.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /function/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /wp-admin/css/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:41 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /contact.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /ws.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /file/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /wp-2019.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:42 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /.well-known/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /assets/images/doc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /z.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /wp-admin/network/natural.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:43 +0200] „GET /dashboard.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:44 +0200] „GET /wp-admin/css/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:44 +0200] „GET /css.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:44 +0200] „GET /wp-admin/images/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /wp-content/updates.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /xx.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /geju.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:45 +0200] „GET /wp-content/themes/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:46 +0200] „GET /radio.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:46 +0200] „GET /mah/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:46 +0200] „GET /wp-admin/includes/nav.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:47 +0200] „GET /wp-includes/assets/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:47 +0200] „GET /wp-content/upgrade/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:47 +0200] „GET /x.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /admin/upload/css.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:48 +0200] „GET /byp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /wp-admin/wp-conflg.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /license.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /wp-includes/SimplePie/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:49 +0200] „GET /wp-content/themes/deeto/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /cgi-bin/file.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /wp-admin/install.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /alfa-rex.php7 HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:50 +0200] „GET /wp-includes/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:51 +0200] „GET /2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:51 +0200] „GET /cc.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:51 +0200] „GET /wp-content/plugins/seoplugins/mar.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /about/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /jp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /wp-content/plugins/view-more/ioxi.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:52 +0200] „GET /wp-admin/maint/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /wp-class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /wp-signin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /404.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /f35.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:53 +0200] „GET /blog.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /wp-Owl.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /moon.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /wp-blog.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:54 +0200] „GET /wp-admin/admin-ajax.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /wp-includes/css/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /wp-content/upgrade-temp-backup/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /gg.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:55 +0200] „GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /eagle.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /wp-admin/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /lufix.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /ant.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:56 +0200] „GET /cux.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /i.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /wp-error.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:57 +0200] „GET /send.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /wp-content/plugins/init-help/init.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /wp-includes/pomo/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /admin.php?attempt=1 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /log.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:58 +0200] „GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /alfa.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:36:59 +0200] „GET /wp-admin/network/chosen.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /wp-admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /wp-content/packed.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /wp-includes/wp-atom.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:00 +0200] „GET /config.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /69.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /index/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:01 +0200] „GET /readme.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:12 +0200] „GET /wp-includes/assets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:12 +0200] „GET /files/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:12 +0200] „GET /wp-content/themes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /assets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /wp-includes/PHPMailer/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /wp-includes/js/codemirror/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:13 +0200] „GET /wp-includes/theme-compat/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:14 +0200] „GET /wp-admin/user/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:14 +0200] „GET /.well-known/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:14 +0200] „GET /wp-includes/js/crop/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/html-api/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/blocks/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/pomo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:15 +0200] „GET /wp-includes/customize/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /assets/css/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /wp-includes/Text/Diff/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /wp-includes/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:16 +0200] „GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:17 +0200] „GET /wp-includes/Text/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:17 +0200] „GET /wp-includes/sodium_compat/src/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:17 +0200] „GET /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-admin/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-includes/css/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-includes/block-supports/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:18 +0200] „GET /wp-admin/maint/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /wp-admin/includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /wp-content/plugins/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:19 +0200] „GET /wp-includes/images/crystal/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /wp-includes/sitemaps/providers/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /wp-includes/rest-api/search/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /admin/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:20 +0200] „GET /wp-admin/meta/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-includes/ID3/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-includes/SimplePie/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-content/themes/twentytwentyfour/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:21 +0200] „GET /wp-content/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /private/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /wp-admin/css/colors/modern/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /wp-includes/Requests/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:22 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /wp-content/upgrade/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /wp-includes/sitemaps/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:23 +0200] „GET /assets/images/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp-includes/css/dist/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp/wp-admin/includes/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp-includes/widgets/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:24 +0200] „GET /wp-content/up HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:25 +0200] „GET /wp-admin/css/colors/midnight/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
146.70.192.182 website*x.de – – [14/Sep/2025:06:37:25 +0200] „GET /wp-includes/certificates/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“

MAIL NR. 15 SONNTAG

abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com,dmzhostabuse@gmail.com,subhrajyoti.pramanik@indinet.co.in,anurag.shrivastava@siti.esselgroup.com,Deepak.Garg@siti.esselgroup.com

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
20.91.142.198 website*x.de – – [14/Sep/2025:03:34:31 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

AS48090 – TECHOFF SRV LIMITED – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /.env.save HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /.env.prod HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:07 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /application/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /phpinfo.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /php_info.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:08 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /backend/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /.env.example HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /admin/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „GET /info HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
93.123.109.81 www.website*x.de – – [14/Sep/2025:04:31:09 +0200] „POST / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“

AS17747 – SITI NETWORKS LIMITED – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
202.142.121.193 www.website*x.de – – [14/Sep/2025:07:35:45 +0200] „GET /wp-content/plugins/si-contact-form/captcha/securimage_show.php?prefix=ubsMBJdzTAlk10Os HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.43“

MAIL NR. 16 SONNTAG

info@smartlink-isp.com,google-cloud-compliance@google.com, network-abuse@google.com,reports@magnates.co.za

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 website*x.com – – [14/Sep/2025:15:24:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 website*x.com – – [14/Sep/2025:15:24:15 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS396982 – Google LLC – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:17 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/124.0.6367.56 Mobile/15E148 Safari/604.1“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:17 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:17 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.2365.66“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:17 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:17 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:17 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:17 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 16_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:18 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Android 13; Mobile; rv:124.0) Gecko/124.0 Firefox/124.0“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:18 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.56 Mobile Safari/537.36“
34.148.24.222 website*x.com – – [14/Sep/2025:17:13:18 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“

AS214209 – Internet Magnate (Pty) Ltd – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
94.156.152.52 website*x.com – – [14/Sep/2025:19:03:11 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
94.156.152.52 website*x.com – – [14/Sep/2025:19:03:54 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 17 SONNTAG

complain@irinn.in,kaushik@alliancekolkata.com,abuse@telstra.net,abuse@microsoft.com,msftcs@microsoft.com,cert@microsoft.com

AS23860 – Alliance Broadband Services Pvt. Ltd. – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
103.102.116.123 website*x.com – – [14/Sep/2025:19:27:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/96.0.0.0 Safari/537.36“

AS1221 – Telstra Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2001:8003:5c1b:e901:8109:84ce:1c25:9a56 website*x.com – – [14/Sep/2025:19:44:36 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
4.227.92.81 website*x.com – – [14/Sep/2025:19:58:39 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 18 SONNTAG

google-cloud-compliance@google.com, network-abuse@google.com,abuse@slt.lk,info@smartlink-isp.com

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /home HTTP/1.0“ 403 – „http://website*x.de/home“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.86 Safari/537.36 Brave/1.62.162“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „http://website*x.de/wordpress“ „Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /bc HTTP/1.0“ 403 – „http://website*x.de/bc“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:32 +0200] „HEAD /old HTTP/1.0“ 403 – „http://website*x.de/old“ „Mozilla/5.0 (Linux; Android 10; Nokia 2720 Flip) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.99 Mobile Safari/537.36 KAIOS/2.5“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:33 +0200] „HEAD /bk HTTP/1.0“ 403 – „http://website*x.de/bk“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6280.88 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:33 +0200] „HEAD /backup HTTP/1.0“ 403 – „http://website*x.de/backup“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:33 +0200] „HEAD / HTTP/1.0“ 403 – „http://website*x.de/“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.200 YaBrowser/24.1.0.0 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:34 +0200] „HEAD /new HTTP/1.0“ 403 – „http://website*x.de/new“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:34 +0200] „HEAD /main HTTP/1.0“ 403 – „http://website*x.de/main“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36“
34.182.42.111 www.website*x.de – – [14/Sep/2025:17:16:34 +0200] „HEAD /wp HTTP/1.0“ 403 – „http://website*x.de/wp“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36“

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 www.website*x.de – – [14/Sep/2025:18:11:02 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 www.website*x.de – – [14/Sep/2025:18:13:28 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS9329 – Sri Lanka Telecom Internet – ALSO AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:28 +0200] „GET /wp-content/plugins/WordPressCore/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:28 +0200] „GET /wp-content/plugins/WordPressCore-1/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:28 +0200] „GET /wp-content/themes/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:29 +0200] „GET /wp-content/plugins/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:29 +0200] „GET /wp-includes/images/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:30 +0200] „GET /wp-includes/widgets/include.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:30 +0200] „GET /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:31 +0200] „GET /wp-content/plugins/HelloDollyV2-1/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:31 +0200] „GET /wp-content/themes/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:31 +0200] „GET /wp-content/plugins/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:32 +0200] „GET /wp-includes/images/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:32 +0200] „GET /wp-includes/widgets/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“
220.247.224.162 www.website*x.de – – [14/Sep/2025:23:40:33 +0200] „GET /wp-content/plugins/HelloDollyV2_ncvt/hello_dolly_v2.php HTTP/1.0“ 403 – „-“ „ShellBot 2.0“

MAIL NR. 19 SONNTAG

abuse@cloudinnovation.org,tech@cloudinnovation.org,google-cloud-compliance@google.com, network-abuse@google.com,abuse@alibaba-inc.com

AS23674 – Nayatel (Pvt) Ltd – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cloudinnovation.org = NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
154.192.0.105 website*x.de – – [14/Sep/2025:15:48:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/82.0.0.0 Safari/537.36“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.2365.66“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6280.88 Safari/537.36“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36 Edg/125.0.2535.51“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.6167.85 Safari/537.36“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:24 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPad; CPU OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/123.0.6312.52 Mobile/15E148 Safari/604.1“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.200 YaBrowser/24.1.0.0 Safari/537.36“
104.154.172.252 website*x.com – – [14/Sep/2025:15:55:25 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Edg/122.0.2365.66“

AS45102 – Alibaba (US) Technology Co., Ltd. – VERY UNWANTED AND UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE WITH MANY IP´S!!! – VERY UNSECURE PROVIDER!
47.254.85.182 website*x.com – – [14/Sep/2025:20:18:18 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.85.182 website*x.com – – [14/Sep/2025:20:18:22 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.6.178 website*x.com – – [14/Sep/2025:20:18:25 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.101.3 website*x.com – – [14/Sep/2025:20:18:27 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.251.15.21 website*x.com – – [14/Sep/2025:20:18:31 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.251.14.232 website*x.com – – [14/Sep/2025:20:18:31 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.90.156 website*x.com – – [14/Sep/2025:20:18:32 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.161 www.website*x.com – – [14/Sep/2025:20:18:34 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.74.59 www.website*x.com – – [14/Sep/2025:20:18:41 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.90.156 www.website*x.com – – [14/Sep/2025:20:18:46 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.25.10 website*x.com – – [14/Sep/2025:20:18:48 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.78.6 website*x.com – – [14/Sep/2025:20:18:49 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.78.6 www.website*x.com – – [14/Sep/2025:20:18:51 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.6.178 www.website*x.com – – [14/Sep/2025:20:18:52 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.5.56 www.website*x.com – – [14/Sep/2025:20:18:53 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.28 www.website*x.com – – [14/Sep/2025:20:18:53 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.251.14.232 website*x.com – – [14/Sep/2025:20:18:55 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.86.63 www.website*x.com – – [14/Sep/2025:20:19:02 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.161 website*x.com – – [14/Sep/2025:20:19:07 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.74.59 website*x.com – – [14/Sep/2025:20:19:20 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.94.161 website*x.com – – [14/Sep/2025:20:19:23 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.74.59 www.website*x.com – – [14/Sep/2025:20:19:27 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.74.59 website*x.com – – [14/Sep/2025:20:19:30 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.254.85.182 www.website*x.com – – [14/Sep/2025:20:19:32 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.5.56 www.website*x.com – – [14/Sep/2025:20:19:35 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.28 website*x.com – – [14/Sep/2025:20:19:36 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.251.14.232 website*x.com – – [14/Sep/2025:20:19:44 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.88.101.3 website*x.com – – [14/Sep/2025:20:19:45 +0200] „GET /Public/home/js/check.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.94.159 www.website*x.com – – [14/Sep/2025:20:19:46 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
47.88.90.156 website*x.com – – [14/Sep/2025:20:19:54 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“
+
47.254.16.187 website*x.com – – [14/Sep/2025:20:20:02 +0200] „GET /static/admin/javascript/hetong.js HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 11; M2004J15SC) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Mobile Safari/537.36“

MAIL NR. 20 SONNTAG

olatunji822@outlook.com,info@smartlink-isp.com

AS215930 – CIPHER OPERATIONS DOO BEOGRAD – NOVI BEOGRAD – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
62.60.130.210 website*x.com – – [14/Sep/2025:20:57:11 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://twitter.com/“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:122.0) Gecko/20100101 Firefox/122.0“
62.60.130.210 website*x.com – – [14/Sep/2025:20:57:16 +0200] „GET /administrator/ HTTP/1.0“ 403 – „https://www.google.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15“
62.60.130.210 website*x.com – – [14/Sep/2025:20:57:21 +0200] „GET / HTTP/1.0“ 403 – „https://duckduckgo.com/“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/122.0“

AS210413 – Smart Link Company for Internet Service – AGAIN AND AGAIN!!! – VERY IGNORANT AND UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
– NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.21 website*x.com – – [15/Sep/2025:00:00:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.21 website*x.com – – [15/Sep/2025:00:00:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

JETZT schauen wir mal, welche Provider nun verantwortungsvoll reagieren, antworten und die Hacker-Idioten stoppen!!!

PROTOKOLL-AUSZÜGE – ABUSE-MELDUNGEN vom FREITAG, 05 SEPTEMBER 25 BIS SONNTAG 07 SEPTEMBER 25!

Am Wochenende mal wieder unzählige dumme Hacking-Versuche, beginnend vom Freitag-Nachmittag bis Sonntag. Es sind ja nur ein paar Auszüge, dessen Abuse-Mails MIT ENTSPRECHENDER BEMERKUNG and die MIT VERANTWORTLICHEN PROVIDER heute am Montag nun rausgehen.

Leider reagieren zu viele Provider absolut nicht, mit dieser UNTÄTIGKEIT mutieren solche Provider immer mehr zum SUPPORTER FÜR DIESE DUMMEN HACKER-IDIOTEN!

Verantwortungsvolle Provider schliessen diese SICHERHEITSLÜCKEN in den entsprechenden Websites/Server nach unserer Meldung unverzüglich!

Hier nun ein paar Auszüge. Sehr amüsant auch hier mal wieder, es wird trotz einem 403 immer und immer wieder über die gleichen IP´S versucht:

AB FREITAG-NACHMITTAG

MAIL NR. 1 FRIDAY!

info@fasthosting.net.za,abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS211138 – Private-Hosting di Cipriano oscar – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@fasthosting.net.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
41.216.188.242 website*x.com – – [05/Sep/2025:16:02:33 +0200] „GET /wp-f.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“

AS16509 – Amazon.com, Inc. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
54.255.218.77 website*x.com – – [05/Sep/2025:17:03:46 +0200] „GET /wp-content/plugins/aafr/uploader.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:04:21 +0200] „GET /wp-content/plugins/elex/elex.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:04:35 +0200] „GET /wp-content/plugins/yanierin/akcc.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:04:54 +0200] „GET /mass.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:06 +0200] „GET /plugins/kontol/wp-crom.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:25 +0200] „GET /wp-content/plugins/view-source/ioxi-o2.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:44 +0200] „GET /wp-content/plugins/index-path.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
54.255.218.77 website*x.com – – [05/Sep/2025:17:05:55 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:02 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:02 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:02 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:03 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:03 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:03 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:03 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:04 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:04 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [05/Sep/2025:19:51:04 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

MAIL NR. 2 FRIDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@virtualine.org,

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE THIS UNSECURE PROVIDER WITH 2 IP´S!
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wp-includes/ID3/license.txt HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /feed/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
20.68.252.105 website*x.com – – [05/Sep/2025:21:01:45 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36“
+
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:38 +0200] „GET /WSO.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:40 +0200] „GET /a.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:41 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:41 +0200] „GET /aaa.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:42 +0200] „GET /ab.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:43 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:43 +0200] „GET /anonse/lock360.php HTTP/1.0“ 403 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:43 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:44 +0200] „GET /sitemaps.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:45 +0200] „GET /ioxi-o.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:45 +0200] „GET /load.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:46 +0200] „GET /k.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:46 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:47 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:48 +0200] „GET /1.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:48 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
20.39.200.85 website*x.com – – [06/Sep/2025:01:20:49 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on!!!

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
198.55.98.93 website*x.com – – [05/Sep/2025:21:52:11 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 8.1.0; SM-G610M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36“

SAMSTAG

MAIL NR. 1 SATURDAY

abuse@virtualine.org,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@vdsina.com

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.253 website*x.com – – [06/Sep/2025:01:55:07 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3724.8 Safari/537.36“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
HERE THIS UNSECURE PROVIDER WITH 2 IP´S!
4.223.174.255 website*x.com – – [06/Sep/2025:04:23:48 +0200] „GET /.alf.php HTTP/1.0“ 403 – „-“ „-“
4.223.174.255 website*x.com – – [06/Sep/2025:04:23:48 +0200] „GET /.bod/.ll/ss.php HTTP/1.0“ 403 – „-“ „-“
4.223.174.255 website*x.com – – [06/Sep/2025:04:23:48 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
+
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:55 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:56 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:56 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:01:57 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:01 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:02 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:02 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:02 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:03 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
4.217.168.213 website*x.com – – [06/Sep/2025:06:02:04 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

AS216071 – SERVERS TECH FZCO – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@vdsina.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:57 +0200] „GET /wp-content/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:58 +0200] „GET /wp-includes/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:58 +0200] „GET /wp-admin/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:58 +0200] „GET /wp-content/uploads/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2025/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2024/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2023/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2022/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:05:59 +0200] „GET /wp-content/uploads/2021/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:00 +0200] „GET /wp-content/themes/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:00 +0200] „GET /wp-content/themes/twentytwentythree/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:00 +0200] „GET /wp-content/themes/twentytwentytwo/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:01 +0200] „GET /wp-content/themes/astra/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:02 +0200] „GET /wp-content/themes/hello-elementor/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:02 +0200] „GET /wp-content/themes/oceanwp/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:03 +0200] „GET /wp-content/themes/neve/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/themes/divi/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/plugins/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/plugins/contact-form-7/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:04 +0200] „GET /wp-content/plugins/woocommerce/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:05 +0200] „GET /wp-content/plugins/elementor/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:06 +0200] „GET /wp-content/plugins/wpforms-lite/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:06 +0200] „GET /wp-content/plugins/updraftplus/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:07 +0200] „GET /wp-content/plugins/wordfence/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“
146.103.126.105 website*x.com – – [06/Sep/2025:07:06:07 +0200] „GET /.well-known/ HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36“

MAIL NR. 2 SATURDAY!

abuse@hostglobal.plus,

AS202306 – HOSTGLOBAL.PLUS LTD – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:47 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; CrOS armv7l 7262.57.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.98 Safari/537.36“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:47 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:40.0) Gecko/20100101 Firefox/40.0“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:48 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2657.0 Safari/537.36 OPR/37.0.2171.0 (Edition developer)“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:48 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.6) Gecko/20091201 Firefox/3.5.6 GTB5“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:50 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/530.4 (KHTML, like Gecko) Chrome/2.0.172.0 Safari/530.4“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:50 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; U; Linux i686 (x86_64); de; rv:1.9.1) Gecko/20090624 Firefox/3.5“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:51 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 4.4.2; ALCATEL A564C Build/KVT49L) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.122 Mobile Safari/537.36“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:52 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.20) Gecko/20110803 AskTbFWV5/3.13.0.17701 Firefox/3.6.20 ( .NET CLR 3.5.30729)“
78.153.140.222 www.website*x.com – – [06/Sep/2025:05:02:52 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „Opera/9.80 (Linux mips; ) Presto/2.12.407 Version/12.51 MB97/0.0.39.18 (TOSHIBA, Mxl661L32, wireless) VSTVB_MB97 SmartTvA/3.0.0“

MAIL NR. 3 SATURDAY!

abuse@amazonaws.com, trustandsafety@support.aws.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@cheapy.host,abuse@fortis.host

AS14618 – Amazon.com, Inc. – HERE WITH 2 IP´S! – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
trustandsafety@support.aws.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
3.222.190.107 www.website*x.com – – [06/Sep/2025:02:15:11 +0200] „GET /value/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot) Chrome/119.0.6045.214 Safari/537.36“
+
54.144.214.30 www.website*x.com – – [06/Sep/2025:02:17:50 +0200] „GET /value/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 AppleWebKit/605.1.15 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/605.1.15“

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.169.137.124 website*x.com – – [06/Sep/2025:05:32:07 +0200] „GET /.alf.php HTTP/1.0“ 403 – „-“ „-“
52.169.137.124 website*x.com – – [06/Sep/2025:05:32:07 +0200] „GET /.bod/.ll/ss.php HTTP/1.0“ 403 – „-“ „-“
52.169.137.124 website*x.com – – [06/Sep/2025:05:32:07 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.88.140 website*x.com – – [06/Sep/2025:10:59:26 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.88.140 website*x.com – – [06/Sep/2025:10:59:42 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS41745 – Baykov Ilya Sergeevich – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@fortis.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:23 +0200] „HEAD /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0“
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:23 +0200] „GET /admin HTTP/1.0“ 403 – „-“ „Mozilla/5.0“
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:26 +0200] „HEAD /downloader HTTP/1.0“ 403 – „-“ „Mozilla/5.0“
45.89.63.55 website*x.com – – [06/Sep/2025:14:32:26 +0200] „GET /downloader HTTP/1.0“ 403 – „-“ „Mozilla/5.0“

MAIL NR. 4 SATURDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com,abuse@cheapy.host

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
4.223.174.255 website*x.de – – [06/Sep/2025:03:58:28 +0200] „GET /.alf.php HTTP/1.0“ 403 – „-“ „-“
4.223.174.255 website*x.de – – [06/Sep/2025:03:58:28 +0200] „GET /.bod/.ll/ss.php HTTP/1.0“ 403 – „-“ „-“
4.223.174.255 website*x.de – – [06/Sep/2025:03:58:28 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S! – Here are we have a 403 but when it´s a 200, this idiots start to try to hacking!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
35.240.87.106 website*x.de – – [06/Sep/2025:06:21:42 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“
35.233.68.216 website*x.de – – [06/Sep/2025:06:21:42 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.88.140 website*x.de – – [06/Sep/2025:08:12:00 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.88.140 website*x.de – – [06/Sep/2025:08:12:15 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 5 SATURDAY!

info@scpl.pk,hello@scpl.pk,abuse@dfri.net,tor-abuse@digitalcourage.de,abuse@f3netze.de

AS135661 – Superior Connections private limited – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@scpl.pk – IS NOW ANSWERED, AFTER OUR POSTING HERE!
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.6.25“
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.2) Gecko/20090729 Firefox/3.5.2 (.NET CLR 3.5.30729)“
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36 Edg/106.0.3085.475“
103.62.235.29 website*x.com – – [06/Sep/2025:05:10:57 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15“

AS198093 – Foreningen for digitala fri- och rattigheter – NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@dfri.net
2001:67c:289c:4::79 website*x.com – – [06/Sep/2025:05:22:33 +0200] „GET /wp-config.zip HTTP/1.0“ 302 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

AS60729 – Stiftung Erneuerbare Freiheit – HERE WITH 2 IP´S! – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
TOR-EXIT S H I T IS ALWAYS COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS THERE!!!
tor-abuse@digitalcourage.de – RESPONSES FROM TOR-EXIT PROVIDER TO OUR ABUSE EMAIL ABSOLUTELY USELESS!
2a0b:f4c2:4::104 website*x.com – – [06/Sep/2025:05:22:37 +0200] „GET /db-config.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2:4::104 website*x.com – – [06/Sep/2025:05:22:38 +0200] „GET /wp-config.php.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2:4::104 website*x.com – – [06/Sep/2025:05:22:39 +0200] „GET /wp-config-backup.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
+
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:45 +0200] „GET /config.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:46 +0200] „GET /database.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:48 +0200] „GET /installer-data.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:48 +0200] „GET /mysql.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:48 +0200] „GET /db.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:49 +0200] „GET /wordpress.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:50 +0200] „GET /backup.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:51 +0200] „GET /backups.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:52 +0200] „GET /wp.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:52 +0200] „GET /daily.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:53 +0200] „GET /database-sql.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“
2a0b:f4c2::12 website*x.com – – [06/Sep/2025:05:22:54 +0200] „GET /dump.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

AS205100 – F3 Netze e.V. – VERY UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
TOR-EXIT S H I T IS ALWAYS COMPLETE BLOCKED! – TO MANY HACKER-IDIOTS THERE!!!
abuse@f3netze.de – RESPONSES FROM TOR-EXIT PROVIDER TO OUR ABUSE EMAIL ABSOLUTELY USELESS!
2a0b:f4c0:16c:6::1 website*x.com – – [06/Sep/2025:05:22:55 +0200] „GET /site.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

MAIL NR. 6 SATURDAY!

abuse@netcup.de,abuse@cheapy.host,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS197540 – netcup GmbH – VERY IGNORANT AND UNWANTED! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@netcup.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a03:4000:1d:3d:1827:b1ff:feec:f6b0 website*x.com – – [06/Sep/2025:05:22:56 +0200] „GET /archive.zip HTTP/1.0“ 403 – „-“ „Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET4.0C; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0E)“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.88.140 website*x.com – – [06/Sep/2025:07:17:13 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.88.140 website*x.com – – [06/Sep/2025:07:17:29 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
+
196.251.88.140 website*x.com – – [06/Sep/2025:13:36:24 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.88.140 website*x.com – – [06/Sep/2025:13:36:40 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:06 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:08 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:08 +0200] „GET /wp-sigunq.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:17 +0200] „GET /wso112233.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:18 +0200] „GET /alfanew.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:19 +0200] „GET /fw.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:20 +0200] „GET /install.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:21 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:21 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:21 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:22 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:23 +0200] „GET /classsmtps.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:23 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:24 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:24 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:25 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:26 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:26 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:27 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:27 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:28 +0200] „GET /wp-activate.php HTTP/1.0“ 302 – „-“ „-“
135.220.210.220 website*x.com – – [06/Sep/2025:14:18:29 +0200] „GET /plugins.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and son on!!!

MAIL NR. 7 SATURDAY!

rebootyes@gmail.com,report@abuseradar.com,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com

AS133201 – ABCDE GROUP – CHINA IS COMPLETE UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
rebootyes@gmail.com
202.61.84.200 www.website*x.de – – [06/Sep/2025:02:19:57 +0200] „GET /baker.php/ HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0“

AS153656 – OWGELS INTERNATIONAL CO., LIMITED – CHINA IS COMPLETE UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
HERE WITH 2 IP´S!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
155.117.98.42 www.website*x.de – – [06/Sep/2025:02:30:26 +0200] „GET /1234.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0“
+
103.163.208.61 www.website*x.de – – [06/Sep/2025:02:32:34 +0200] „GET /login.php?s=Admin/login HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0“

AS8075 – Microsoft Corporation – HERE WITH 3 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.169.141.112 website*x.de – – [06/Sep/2025:02:57:25 +0200] „GET /.alf.php HTTP/1.0“ 403 – „-“ „-“
52.169.141.112 website*x.de – – [06/Sep/2025:02:57:25 +0200] „GET /.bod/.ll/ss.php HTTP/1.0“ 403 – „-“ „-“
52.169.141.112 website*x.de – – [06/Sep/2025:02:57:25 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
+
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:32 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:32 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:32 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:33 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:34 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:34 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.de – – [06/Sep/2025:09:19:34 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
+
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:44 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /wp-sigunq.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /wso112233.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /alfanew.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:45 +0200] „GET /fw.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /install.php HTTP/1.0“ 403 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /classsmtps.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:46 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
52.178.146.4 website*x.de – – [06/Sep/2025:12:32:47 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“

MAIL NR. 8 SATURDAY!

bucklog@proton.me,contact@proton.me,enterprise@protonmail.com,abuse@protonmail.com,

AS211590 – Bucklog SARL – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
bucklog@proton.me – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:58 +0200] „GET / HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:58 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:58 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /config/.env HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /_profiler/phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:23:59 +0200] „GET /tool/view/phpinfo.view.php HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:00 +0200] „GET /test.php HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:05 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:10 +0200] „GET /phpinfo=1 HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:10 +0200] „GET /phpinfo.php HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:16 +0200] „GET /phpinfo HTTP/1.0“ 403 – „-“ „python-httpx/0.28.1“
185.177.72.21 www.website*x.de – – [06/Sep/2025:09:24:16 +0200] „GET /info.php HTTP/1.0“ 302 – „-“ „python-httpx/0.28.1“

MAIL NR. 9 SATURDAY!

report@abuseradar.com,abuse@mbs763.kz,abuse@advinservers.com,abuse-manual@advinservers.com,support@privatelayer.com,abuse@cheapy.host

AS209854 – Cyberzone S.A. – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
report@abuseradar.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /bless.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /.well-known/login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /fai.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /.wp/wso.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /core.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /robots.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /mini.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /goods.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /f35.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /update/f35.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.26 website*x.com – – [06/Sep/2025:08:22:28 +0200] „GET /wp-content/hello.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
and so on… and so on!!!
+
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-includes/class.api.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-includes/fonts/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /autoload_classmap/bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /images/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /db.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /mah/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-content/plugins/bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-includes/admin.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-content/themes/tflow/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/function.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /templates/beez3/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/js/wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-content/edit-wolf.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /install.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/css/colors/blue/rk2.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /components/com_jea/views/form/tmpl/size.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /templates/beez/index.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /bypass.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36“
212.116.231.28 website*x.com – – [06/Sep/2025:08:22:30 +0200] „GET /wp-admin/css/colors/light/profile.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“

AS206216 – Advin Services LLC – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@advinservers.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
160.187.211.128 website*x.com – – [06/Sep/2025:09:08:10 +0200] „GET /new.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:09:31:31 +0200] „GET /new.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:09:57:34 +0200] „GET /ffile.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:10:20:22 +0200] „GET /ffile.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:10:47:12 +0200] „GET /file.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:11:09:18 +0200] „GET /file.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:11:37:35 +0200] „GET /abcd.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:12:00:56 +0200] „GET /abcd.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:12:52:11 +0200] „GET /cfile.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:13:22:06 +0200] „GET /class-t.api.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:13:45:29 +0200] „GET /class-t.api.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:14:14:43 +0200] „GET /bolt.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:14:39:06 +0200] „GET /bolt.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:15:10:41 +0200] „GET /lock360.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“
160.187.211.128 website*x.com – – [06/Sep/2025:15:34:46 +0200] „GET /lock360.php HTTP/1.0“ 302 20 „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36“

AS51852 – Private Layer INC – NOW ALSO A VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@privatelayer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
179.43.191.19 website*x.com – – [06/Sep/2025:13:49:10 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.88.140 website*x.com – – [06/Sep/2025:18:24:44 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.88.140 website*x.com – – [06/Sep/2025:18:24:59 +0200] „GET /inputs.php HTTP/1.0“ 302 20 „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

MAIL NR. 10 SATURDAY and SUNDAY!!

info@smartlink-isp.com,abuse@ovh.net

AS210413 – Smart Link Company for Internet Service – VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
info@smartlink-isp.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
45.157.54.24 www.website*x.de – – [06/Sep/2025:11:29:09 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
45.157.54.24 www.website*x.de – – [06/Sep/2025:11:37:30 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

AS16276 – OVH SAS
abuse@ovh.net
51.75.157.203 www.website*x.de – – [07/Sep/2025:13:56:37 +0200] „GET /about.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“
51.75.157.203 www.website*x.de – – [07/Sep/2025:13:56:38 +0200] „GET /admin.php?520 HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36“

MAIL NR. 11 SATURDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,support@privatelayer.com,

AS8075 – Microsoft Corporation – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
4.184.134.197 website*x.com – – [06/Sep/2025:10:42:30 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

AS51852 – Private Layer INC – NOW ALSO A VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@privatelayer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
179.43.191.19 website*x.com – – [06/Sep/2025:13:29:11 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36“

MAIL NR. 12 SATURDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,support@privatelayer.com,

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:26 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:26 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:26 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:27 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:27 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:27 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:27 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:28 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:28 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.183.88 website*x.com – – [06/Sep/2025:09:21:28 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
+
20.218.92.117 website*x.com – – [06/Sep/2025:11:39:34 +0200] „GET //wp-content/plugins/fix/up.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36“

AS51852 – Private Layer INC – NOW ALSO A VERY UNWANTED PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
support@privatelayer.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
179.43.191.19 website*x.com – – [06/Sep/2025:13:16:19 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com/wp-login.php“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36“

MAIL NR. 13 SATURDAY!

abuse-wtt@hkbn.com.hk, hostmaster@hkbn.com.hk, abuse@namecheaphosting.com, abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@cyberfolks.pl

AS9381 – HKBN Enterprise Solutions HK Limited – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse-wtt@hkbn.com.hk – CHINA IS COMPLETE UNWANTED! – TO MANY HACKER-IDIOTS EVERY DAY!
218.255.162.2 website*x.com – – [06/Sep/2025:21:22:52 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

AS22612 – Namecheap, Inc. – VERY GOOD PROVIDER! – ALWAYS STOPS THE HACKER-IDIOTS AFTER ABUSE-MAIL FROM US!
abuse@namecheaphosting.com – ALWAYS ANSWERED ABOUT OUR ABUSE EMAILS! THIS IS VERY GOOD!
162.0.226.65 website*x.com – – [06/Sep/2025:21:28:01 +0200] „POST /xmlrpc.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:50 +0200] „GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0“ 403 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:51 +0200] „GET /golden.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:53 +0200] „GET /dejavu.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:53 +0200] „GET /file7.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:54 +0200] „GET /aa.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:54 +0200] „GET /ahax.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:55 +0200] „GET /.trash7309/index.php HTTP/1.0“ 403 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:55 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:56 +0200] „GET /asasx.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:56 +0200] „GET /file9.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:57 +0200] „GET /astab.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:58 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:58 +0200] „GET /file8.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:59 +0200] „GET /file4.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:44:59 +0200] „GET /gfile.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:00 +0200] „GET /CLA.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:01 +0200] „GET /law.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:01 +0200] „GET /file5.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:02 +0200] „GET /file6.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:02 +0200] „GET /file3.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:03 +0200] „GET /file17.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:04 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:04 +0200] „GET /wsa.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:05 +0200] „GET /xmlrpcx.php HTTP/1.0“ 302 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:05 +0200] „GET /ss.php HTTP/1.0“ 403 – „-“ „-“
20.188.97.184 website*x.com – – [06/Sep/2025:21:45:06 +0200] „GET /ot.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on…!!!

AS41079 – Cyber_Folks S.A. – VERY IGNORANT PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cyberfolks.pl – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
2a02:1778::113:d0 website*x.com – – [06/Sep/2025:22:36:11 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 14.5) AppleWebKit/618.3.5 (KHTML, like Gecko) Version/17.4 Safari/618.3.5“
2a02:1778::113:d0 website*x.com – – [06/Sep/2025:23:16:18 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:126.0) Gecko/20100101 Firefox/126.0“

SONNTAG

MAIL NR. 14 SUNDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,reports@magnates.co.za,abuse@krystal.uk

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:33 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /makeasmtp.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /wp-sigunq.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /wso112233.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /alfanew.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /fw.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:34 +0200] „GET /install.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /simple.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /classsmtps.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:35 +0200] „GET /wp-blog-header.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-trackback.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-signup.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-comments-post.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-load.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:36 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /wp-activate.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /plugins.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /post.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:37 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
4.185.125.112 website*x.com – – [07/Sep/2025:00:14:38 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
… and so on… and so on…!!!
+
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:04 +0200] „HEAD /wordpress HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD /wp HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD /bc HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:05 +0200] „HEAD /bk HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /backup HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /old HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /new HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:06 +0200] „HEAD /main HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
52.187.45.15 website*x.com – – [07/Sep/2025:22:46:07 +0200] „HEAD /home HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“

AS214209 – Internet Magnate (Pty) Ltd – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
reports@magnates.co.za – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
94.156.152.52 website*x.com – – [07/Sep/2025:03:38:37 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
94.156.152.52 website*x.com – – [07/Sep/2025:03:39:26 +0200] „GET /style.php HTTP/1.0“ 302 20 „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“

AS12488 – Krystal Hosting Ltd – IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@krystal.uk
62.100.204.111 website*x.com – – [07/Sep/2025:12:26:22 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

MAIL NR. 15 SUNDAY!

abuse@datacamp.co.uk,abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,google-cloud-compliance@google.com, network-abuse@google.com,

AS212238 – Datacamp Limited – HERe WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@datacamp.co.uk – ONLY 1 AUTOMATIC ANSWER – NO MORE INFO – VERY POOR!
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:47 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:48 +0200] „GET /bless.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:48 +0200] „GET /O-Simple.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:49 +0200] „GET /lock360.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:50 +0200] „GET /zwso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:51 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:51 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:52 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:53 +0200] „GET /.well-known/login.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:54 +0200] „GET /mah.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:54 +0200] „GET /fai.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:55 +0200] „GET /.wp/wso.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:56 +0200] „GET /core.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:57 +0200] „GET /robots.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:57 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
62.93.167.89 website*x.com – – [07/Sep/2025:03:32:58 +0200] „GET /mini.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
… and so on… and so on… VERY UNSECURE PROVIDER!!!
+
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:31 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.205.47 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=../%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.2807.70 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.1300.102 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.850.57 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:32 +0200] „GET /?s=../%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3004.30 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:33 +0200] „GET /?s=/index/%5Cthink%5CContainer/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.1570.32 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:33 +0200] „GET /?s=/index/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.1157.5 Safari/537.36“
178.249.214.8 www.website*x.com – – [07/Sep/2025:04:51:33 +0200] „GET /?s=/Home/%5Cthink%5Capp/invokefunction&function=call_user_func_array&vars%5B0%5D=md5&vars%5B1%5D%5B%5D=HelloThinkPHP HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.1201.35 Safari/537.36“

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
13.89.226.123 website*x.com – – [07/Sep/2025:06:07:51 +0200] „GET /lv.php HTTP/1.0“ 302 – „-“ „-“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:03 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:04 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:05 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“
35.237.189.91 website*x.com – – [07/Sep/2025:12:56:06 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36“

MAIL NR. 16 SUNDAY!

abuse@microsoft.com, msftcs@microsoft.com, cert@microsoft.com,abuse@ipxo.com, abuse@contabo.de, noc@contabo.de, sascha.wintz@contabo.de,

AS8075 – Microsoft Corporation – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@microsoft.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
40.69.185.225 website*x.com – – [07/Sep/2025:04:03:58 +0200] „GET /autoload_classmap.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:03:59 +0200] „GET /1.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:03:59 +0200] „GET /flower.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:00 +0200] „GET /admin.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:00 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:00 +0200] „GET /meta.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:01 +0200] „GET /about.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:01 +0200] „GET /randkeyword.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:01 +0200] „GET /hehe.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:01 +0200] „GET /user.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:02 +0200] „GET /chosen.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:02 +0200] „GET /wp-content/about.php HTTP/1.0“ 403 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:02 +0200] „GET /functions.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:02 +0200] „GET /cron.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:03 +0200] „GET /edit.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:03 +0200] „GET /gecko-new.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:03 +0200] „GET /cookie.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:03 +0200] „GET /wp-admin/js/widgets/index.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:04 +0200] „GET /file2.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:04 +0200] „GET /xleet.php HTTP/1.0“ 302 – „-“ „-“
40.69.185.225 website*x.com – – [07/Sep/2025:04:04:04 +0200] „GET /manager.php HTTP/1.0“ 302 – „-“ „-“
+
13.89.97.103 website*x.com – – [07/Sep/2025:07:04:32 +0200] „GET /wp.php HTTP/1.0“ 302 – „-“ „-“

AS51167 – Contabo GmbH – 162.244.28.0/22 IS NOW ALSO COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@contabo.de – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
162.244.31.243 website*x.com – – [07/Sep/2025:11:32:04 +0200] „POST /xmlrpc.php HTTP/1.0“ 302 20 „https://website*x.com“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Edg/126.0.0.0“

MAIL NR. 17 SUNDAY!

abuse@cheapy.host,abuses@cyberzonehub.com

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.72.57 website*x.com – – [07/Sep/2025:07:35:15 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.72.57 website*x.com – – [07/Sep/2025:07:35:41 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.72.57 www.website*x.com – – [07/Sep/2025:07:36:06 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“
196.251.72.57 www.website*x.com – – [07/Sep/2025:07:36:31 +0200] „POST /wp-confiq.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0“

AS209854 – Cyberzone S.A. – HERE WITH 2 IP´S! – AGAIN AND AGAIN!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuses@cyberzonehub.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /inputs.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /images/class-config.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /wp-content/1.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:03 +0200] „GET /mar.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /wp-content/themes/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /text.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /buy.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:04 +0200] „GET /function/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /as.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /wp-admin/css/about.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /tinyfilemanager.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /contact.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:05 +0200] „GET /wp-content/themes/pridmag/db.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:06 +0200] „GET /ws.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
185.196.0.11 website*x.com – – [07/Sep/2025:12:08:06 +0200] „GET /file/function.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
… and so on… and son on!!!
+
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:22 +0200] „GET /file.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-cron.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-includes/blocks/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /new.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /user.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:23 +0200] „GET /wp-includes/wp-class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /ty.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /upload.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /class.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /tiny.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:24 +0200] „GET /nciii.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /wp-admin/admin.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /admin/log.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /wp-mail.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:25 +0200] „GET /we.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /wp-includes/Requests/library/about.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /wp-links.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /fm.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /elp.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /wp-includes/assets/autoload_classmap.php HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0“
185.196.0.9 website*x.com – – [07/Sep/2025:12:08:26 +0200] „GET /dropdown.php HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36“
… and so on… and son on!!!

MAIL NR. 18 SUNDAY!

abuse@hostglobal.plus,google-cloud-compliance@google.com, network-abuse@google.com,

AS202306 – HOSTGLOBAL.PLUS LTD – AGAIN AND AGAIN!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@hostglobal.plus – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:16 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Opera/9.80 (Windows NT 6.1) Presto/2.12.388 Version/12.17“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:16 +0200] „GET /.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_2) AppleWebKit/604.4.7 (KHTML, like Gecko) WebClip/13604.4.7.1.6 Safari/13604.4.7.1.6“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:16 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 5.0; SM-G900V Build/LRX21T) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.95 Mobile Safari/537.36“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:17 +0200] „GET /sendgrid.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/600.8.9 (KHTML, like Gecko) Version/10.0.3 Safari/602.4.8“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:18 +0200] „GET /twilio.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (iPhone; CPU iPhone OS 8_4_1 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/7.0.55539 Mobile/12H321 Safari/600.1.4“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:20 +0200] „GET /api/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.82 Safari/537.36“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:21 +0200] „GET /phpinfo/ HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:22 +0200] „GET /dev/.env HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 6.2; rv:57.0) Gecko/20100101 Firefox/57.0“
78.153.140.218 website*x.com – – [07/Sep/2025:13:41:23 +0200] „GET /app_dev.php/_profiler/phpinfo HTTP/1.0“ 302 – „-“ „Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2272.118 Safari/537.36“

AS396982 – Google LLC – AGAIN AND AGAIN EVERY DAY!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
google-cloud-compliance@google.com – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT! – ABUSE PER EMAIL IS STANDARD!!!
35.200.202.200 website*x.com – – [07/Sep/2025:14:24:29 +0200] „POST /wp-login.php HTTP/1.0“ 403 – „https://website*x.com“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.93 Safari/537.36“

MAIL NR. 19 SUNDAY!

abuse@cheapy.host

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE PROVIDER!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! THIS IS VERY IGNORANT!
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /xmlrpc.php?rsd HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /blog/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /web/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /website/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /news/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /2020/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /test/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /site/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“
196.251.71.181 website*x.com – – [07/Sep/2025:13:05:54 +0200] „GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36“

Schauen wir mal, welche Provider nun verantwortungsvoll reagieren!

WEITERE PROTOKOLL-AUSZÜGE vom 04. UND  05. SEPTEMBER 25!

Aufgrund der IGNORANZ und/oder UNTÄTIGKEIT in Bezug auf unsere Abuse-Mails hier 3 weitere Auszüge der TÄGLICH WIEDERKEHRENDEN HACKER-IDIOTEN, die diese 3 Provider mit ihren armseeligen Hacking-Versuche missbrauchen:

AS209605 – UAB Host Baltic

AS214940 – KPROHOST LLC

AS401120 – cheapy.host LLC

Hier die täglich wiederkehrenden Hacking-Versuche! 3 Abuse-Meldungen MIT BEMERKUNGEN für diese fragwürdigen Provider gingen heute raus:

AS209605 – UAB Host Baltic – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
admin@serveroffer.lt – ANSWERED ABOUT IN OUR ABUSE EMAILS BUT DOES NOTHING!!! – THIS IS A TOTAL SCAM!!!
141.98.11.169 website*x.com – – [04/Sep/2025:14:46:46 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://wordpress.org/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36“
141.98.11.169 website*x.com – – [04/Sep/2025:14:46:56 +0200] „GET /wp-login.php HTTP/1.0“ 403 – „https://www.google.com/search?q=wordpress“ „Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0“
141.98.11.169 website*x.com – – [04/Sep/2025:14:46:56 +0200] „GET /wp-admin/ HTTP/1.0“ 403 – „https://www.facebook.com/“ „Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36“

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.253 website*x.com – – [04/Sep/2025:16:04:28 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „SonyEricssonK810i/R1KG Browser/NetFront/3.3 Profile/MIDP-2.0 Configuration/CLDC-1.1“

AS401120 – cheapy.host LLC – HERE WITH 2 IP´S! – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.80.146 website*x.com – – [05/Sep/2025:03:38:46 +0200] „GET /xmlrpc.php HTTP/1.0“ 403 – „-“ „Python/3.13 aiohttp/3.12.15“
+
196.251.69.53 website*x.com – – [05/Sep/2025:05:43:55 +0200] „GET /files.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“
196.251.69.53 website*x.com – – [05/Sep/2025:05:44:14 +0200] „GET /style.php HTTP/1.0“ 302 20 „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36“

Schauen wir mal, WANN DIESE 3 VERANTWORTLICHEN PROVIDER IN BEZUG AUF SICHERHEIT ENDLICH REAGIEREN UND DIE SICHERHEITSLÜCKEN IN IHREN SYSTEMEN ENDLICH SCHLIESSEN!!!

PROTOKOLL-AUSZUG 03 SEPTEMBER 25 UND 04 SEPTEMBER 25!

2 Provider die bisher seit MONATEN auf keine einzige Abuse-Mail von uns reagieren! So etwas ist ein absolutes NoGo!

Somit bewerten wir nun diese 2 PROVIDER als absolut IGNORANT, ARROGANT und absolut NICHT SICHERHEITSBEWUSST ein:

AS214940 – KPROHOST LLC – abuse@virtualine.org

AS401120 – cheapy.host LLC – abuse@cheapy.host 

Sämtliche Netzwerke dieser 2 sehr fragwürdigen Provider sind über unser eigenes Security-Tool eh schon seit mehr als einen Monat wegen dieser IGNORANZ auf sehr vielen Websites gesperrt! Sämtliche Hacker-Idioten aus diesen Netzwerken bekommen ein freundliches 403! Haha…

AS214940 – KPROHOST LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@virtualine.org – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
198.55.98.253 website*x.com – – [04/Sep/2025:02:28:30 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/5.0 (Linux; Android 7.1.1; CPH1801) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.101 Mobile Safari/537.36“
198.55.98.253 website*x.com – – [04/Sep/2025:02:36:44 +0200] „GET /.git/config HTTP/1.0“ 403 – „-“ „Mozilla/4.77 [en] (X11; I; IRIX;64 6.5 IP30)“

AS401120 – cheapy.host LLC – AGAIN AND AGAIN EVERY DAY!!! – VERY UNSECURE!!! – COMPLETE BLOCKED WITH OUR SECURITY-TOOL AT MANY WEBSITES!
abuse@cheapy.host – NO RESPONSE… NO ANSWER… NOTHING IN OUR ABUSE EMAILS! VERY IGNORANT!
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „POST /wp-plain.php HTTP/1.0“ 302 – „www.google.com“ „Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „GET / HTTP/1.0“ 403 – „-“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:43:55 +0200] „POST /alfacgiapi/perl.alfa HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
196.251.80.146 website*x.com – – [03/Sep/2025:20:44:03 +0200] „GET /wp-content/themes/seotheme/db.php?u HTTP/1.0“ 403 – „www.google.com“ „Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36“
+
196.251.69.222 website*x.com – – [03/Sep/2025:21:19:02 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“
196.251.69.222 website*x.com – – [03/Sep/2025:21:19:02 +0200] „HEAD / HTTP/1.0“ 403 – „-“ „python-requests/2.32.4“

Schauen wir nun mal, welcher PROVIDER WIRKLICH VERANTWORTUNGSBEWUSST REAGIERT!

Seit wir viele Hacking-Versuche fast täglich melden, werden einige dieser Hacker-Idioten vorsichtiger. Man macht das erst mal ein ganz vorsichtiges GET! Kommt da ein 403, hören sie meist auf.

NUR ZU DUMM für all diese armseeligen Hacker-Idioten denn auch das melden wir nun schon seit DEZEMBER 2024!

Hier schicken wir nun ebenfalls ABUSE-MAILS an die mit verantwortlichen Provider! Seriöse Provider reagieren auch schon positiv darauf! Die uns eh bekannten fragwürdigen und/oder gar unseriösen Provider interessieren uns eh nicht mehr denn dessen NETZWERKE sind mittl. komplett gesperrt!

Es ist wirklich immer wieder sehr amüsant, was für Idioten man unter diesen Möchtegern-Hackern erlebt. Teilweise kann man echt nur noch lachen, wie dumm da so manche Amateure und Scriptkiddies vorgehen.

Die Hacker Vollpfosten des Monats

Weitere Auszüge der Logs von vielen Websites in Bezug auf diese Hacker-Idioten folgen diese Tage. 😉

Übrigens, da auch immer wieder für uns zwielichtige Provider auftaucht, hier mal eine Tabelle der Provider dazu. Es spiegelt Erfahrungen wider, aufgrund der erfolgreiche Abuse-Meldungen bis hin zu gewissen ignoranten Provider!

Tipps, wie man die Website schützen kann findest du über den Link.