Auto-ban: 326 malicious requests on 2026-01-01 (e.g., env/backup probes, brute-force, or error burst ...
show moreAuto-ban: 326 malicious requests on 2026-01-01 (e.g., env/backup probes, brute-force, or error bursts).
show less
[Thu Jan 01 11:39:44.871025 2026] [core:info] [pid 453658:tid 453794] [client 34.70.68.199:61221] AH ...
show more[Thu Jan 01 11:39:44.871025 2026] [core:info] [pid 453658:tid 453794] [client 34.70.68.199:61221] AH00128: File does not exist: /home/harald/www/blog/wp-includes/wlwmanifest.xml
...
show less
{"level":"info","ts":1767262210.6492748,"logger":"http.log.access.log1","msg":"handled request","req ...
show more{"level":"info","ts":1767262210.6492748,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.70.68.199","remote_port":"63577","client_ip":"34.70.68.199","proto":"HTTP/1.1","method":"GET","host":"squawka-com.status.catenacloud.com","uri":"/","headers":{"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"],"Accept-Language":["en-US,en;q=0.5"],"Accept":["text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8"],"Keep-Alive":["300"],"Connection":["keep-alive"]}},"bytes_read":0,"user_id":"","duration":0.00004626,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://squawka-com.status.catenacloud.com/"],"Content-Type":[]}}
{"level":"info","ts":1767262210.9182396,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.70.68.199","remote_port":"64028","client_ip":"34.70.68.199","proto":"HTTP/1.1","method":
...
show less
8.922 requests with url.path */xmlrpc.php
1.148 requests with url.path */wp-includes/wlwmanifest.x ...
show more8.922 requests with url.path */xmlrpc.php
1.148 requests with url.path */wp-includes/wlwmanifest.xml
show less
date=2022-08-08
time=15:59:44
srcip=34.70.68.199
attack="Linksys.DirecTV.WVB.HTTP.Header.Remote ...
show moredate=2022-08-08
time=15:59:44
srcip=34.70.68.199
attack="Linksys.DirecTV.WVB.HTTP.Header.Remote.Command.Execution"
srcport=35852
dstport=80
show less
Hacking
Web App Attack
IoT Targeted
Showing 1 to
13
of 13 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ