saloniamatteo - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User saloniamatteo , the webmaster of salonia.it, joined AbuseIPDB in July 2024 and has reported 720 IP addresses.

Standing (weight) is good.

INACTIVE USER WEBMASTER

IP	Date	Comment	Categories
🇨🇭 179.43.146.226	16 Apr 2026	179.43.146.226 - - [16/Apr/2026:22:36:08 +0200] "GET /next?next=http://testdomain.com HTTP/1.1" 301 ... show more 179.43.146.226 - - [16/Apr/2026:22:36:08 +0200] "GET /next?next=http://testdomain.com HTTP/1.1" 301 HOST "2.38.155.38" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" gz% "-" 179.43.146.226 - - [16/Apr/2026:22:36:08 +0200] "GET /redirect.php?goto=http://testdomain.com HTTP/1.1" 301 HOST "2.38.155.38" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" gz% "-" 179.43.146.226 - - [16/Apr/2026:22:36:08 +0200] "GET /redirect.php?u=http://testdomain.com HTTP/1.1" 301 HOST "2.38.155.38" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇳🇱 40.114.177.156	29 May 2025	May 30 01:25:12 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:0 ... show more May 30 01:25:12 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=40.114.177.156 DST=192.168.1.88 LEN=52 TOS=0x00 PREC=0x00 TTL=44 ID=0 DF PROTO=TCP SPT=443 DPT=45732 WINDOW=328 RES=0x00 ACK URGP=0 May 30 01:25:12 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=40.114.177.156 DST=192.168.1.88 LEN=52 TOS=0x00 PREC=0x00 TTL=44 ID=0 DF PROTO=TCP SPT=443 DPT=45742 WINDOW=375 RES=0x00 ACK URGP=0 May 30 01:25:12 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=40.114.177.156 DST=192.168.1.88 LEN=52 TOS=0x00 PREC=0x00 TTL=44 ID=0 DF PROTO=TCP SPT=443 DPT=45748 WINDOW=328 RES=0x00 ACK URGP=0 ... show less	Brute-Force Exploited Host Web App Attack
🇺🇸 146.70.185.32	29 May 2025	146.70.185.32 - - [29/May/2025:09:19:49 +0200] "HEAD / HTTP/1.1" 405 HOST "oa.salonia.it" REF "-" UA ... show more 146.70.185.32 - - [29/May/2025:09:19:49 +0200] "HEAD / HTTP/1.1" 405 HOST "oa.salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" gz% "-" 146.70.185.32 - - [29/May/2025:09:21:07 +0200] "HEAD / HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" gz% "-" 146.70.185.32 - - [29/May/2025:09:21:09 +0200] "HEAD / HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇳🇱 89.42.231.140	29 May 2025	89.42.231.140 - - [29/May/2025:08:45:09 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 403 HOST " ... show more 89.42.231.140 - - [29/May/2025:08:45:09 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 403 HOST "salonia.it" REF "http://2.45.99.34:80/cgi-bin/luci/;stok=/locale" UA "-" gz% "-" 89.42.231.140 - - [29/May/2025:08:59:42 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 403 HOST "salonia.it" REF "https://2.45.99.34:443/cgi-bin/luci/;stok=/locale" UA "-" gz% "-" 89.42.231.140 - - [29/May/2025:09:11:15 +0200] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 403 HOST "salonia.it" REF "http://2.45.99.34:80/cgi-bin/luci/;stok=/locale" UA "-" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇧🇩 103.154.159.220	29 May 2025	103.154.159.220 - - [29/May/2025:03:35:33 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+ ... show more 103.154.159.220 - - [29/May/2025:03:35:33 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 103.154.159.220 - - [29/May/2025:03:35:34 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 103.154.159.220 - - [29/May/2025:03:35:35 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇺🇸 104.223.120.159	27 May 2025	104.223.120.159 - - [27/May/2025:04:40:35 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+ ... show more 104.223.120.159 - - [27/May/2025:04:40:35 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 104.223.120.159 - - [27/May/2025:04:40:35 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 104.223.120.159 - - [27/May/2025:04:40:36 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇯🇵 154.31.114.51	26 May 2025	154.31.114.51 - - [26/May/2025:21:10:18 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+au ... show more 154.31.114.51 - - [26/May/2025:21:10:18 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 154.31.114.51 - - [26/May/2025:21:10:19 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 154.31.114.51 - - [26/May/2025:21:10:20 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇺🇸 72.152.84.15	26 May 2025	72.152.84.15 - - [26/May/2025:17:33:17 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" ... show more 72.152.84.15 - - [26/May/2025:17:33:17 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" 72.152.84.15 - - [26/May/2025:17:37:56 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" 72.152.84.15 - - [26/May/2025:17:37:57 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇺🇸 72.152.84.13	26 May 2025	72.152.84.13 - - [26/May/2025:17:34:44 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" ... show more 72.152.84.13 - - [26/May/2025:17:34:44 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" 72.152.84.13 - - [26/May/2025:17:34:45 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" 72.152.84.13 - - [26/May/2025:17:34:46 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇮🇪 72.145.76.29	26 May 2025	72.145.76.29 - - [26/May/2025:17:19:55 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" ... show more 72.145.76.29 - - [26/May/2025:17:19:55 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" 72.145.76.29 - - [26/May/2025:17:19:55 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" 72.145.76.29 - - [26/May/2025:17:19:56 +0200] "HEAD /kernel HTTP/1.1" 405 HOST "salonia.it" REF "-" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.74 Safari/537.36 Edg/79.0.309.43" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇮🇪 40.69.202.202	25 May 2025	40.69.202.202 - - [25/May/2025:18:06:08 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 40.69.202.202 - - [25/May/2025:18:06:08 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" 40.69.202.202 - - [25/May/2025:18:06:08 +0200] "GET /config.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" 40.69.202.202 - - [25/May/2025:18:06:09 +0200] "GET /lock.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇩🇪 85.215.190.219	25 May 2025	85.215.190.219 - - [25/May/2025:13:50:49 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+a ... show more 85.215.190.219 - - [25/May/2025:13:50:49 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 85.215.190.219 - - [25/May/2025:13:50:49 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 85.215.190.219 - - [25/May/2025:13:50:49 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇸🇬 34.2.131.194	24 May 2025	34.2.131.194 - - [25/May/2025:00:15:20 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+aut ... show more 34.2.131.194 - - [25/May/2025:00:15:20 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 34.2.131.194 - - [25/May/2025:00:15:21 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 34.2.131.194 - - [25/May/2025:00:15:23 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇳🇱 188.166.108.93	24 May 2025	188.166.108.93 - - [24/May/2025:07:09:11 +0200] "GET / HTTP/1.1" 403 HOST "s.salonia.it" REF "-" UA ... show more 188.166.108.93 - - [24/May/2025:07:09:11 +0200] "GET / HTTP/1.1" 403 HOST "s.salonia.it" REF "-" UA "-" gz% "-" 188.166.108.93 - - [24/May/2025:07:09:12 +0200] "GET /@vite/env HTTP/1.1" 429 HOST "s.salonia.it" REF "-" UA "Go-http-client/1.1" gz% "-" 188.166.108.93 - - [24/May/2025:07:09:13 +0200] "GET /actuator/env HTTP/1.1" 429 HOST "s.salonia.it" REF "-" UA "Go-http-client/1.1" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇺🇸 17.253.145.10	22 May 2025	May 22 09:58:44 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:0 ... show more May 22 09:58:44 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=17.253.145.10 DST=192.168.1.88 LEN=86 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=UDP SPT=443 DPT=41628 LEN=66 May 22 09:58:44 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=17.253.145.10 DST=192.168.1.88 LEN=94 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=UDP SPT=443 DPT=41628 LEN=74 May 22 09:58:44 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=17.253.145.10 DST=192.168.1.88 LEN=63 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=UDP SPT=443 DPT=41628 LEN=43 ... show less	Brute-Force Exploited Host Web App Attack
🇦🇺 68.218.18.176	21 May 2025	68.218.18.176 - - [21/May/2025:19:41:41 +0200] "HEAD /wordpress HTTP/1.1" 405 HOST "salonia.it" REF ... show more 68.218.18.176 - - [21/May/2025:19:41:41 +0200] "HEAD /wordpress HTTP/1.1" 405 HOST "salonia.it" REF "http://salonia.it/wordpress" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" gz% "-" 68.218.18.176 - - [21/May/2025:19:41:42 +0200] "HEAD / HTTP/1.1" 405 HOST "salonia.it" REF "http://salonia.it/" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" gz% "-" 68.218.18.176 - - [21/May/2025:19:41:42 +0200] "HEAD /wp HTTP/1.1" 405 HOST "salonia.it" REF "http://salonia.it/wp" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇵🇰 202.83.162.22	21 May 2025	May 21 16:48:29 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:0 ... show more May 21 16:48:29 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=202.83.162.22 DST=192.168.1.88 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=TCP SPT=36856 DPT=44329 WINDOW=0 RES=0x00 ACK URGP=0 May 21 16:48:33 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=202.83.162.22 DST=192.168.1.88 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=TCP SPT=36856 DPT=44329 WINDOW=0 RES=0x00 ACK URGP=0 May 21 16:50:47 localhost kernel: [UFW BLOCK] IN=eth0 OUT= MAC=d8:bb:c1:8d:b6:bb:08:16:05:01:e2:a0:08:00 SRC=202.83.162.22 DST=192.168.1.88 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=TCP SPT=36856 DPT=44041 WINDOW=0 RES=0x00 ACK URGP=0 ... show less	Brute-Force Exploited Host Web App Attack
🇦🇺 4.197.98.193	19 May 2025	4.197.98.193 - - [19/May/2025:21:39:30 +0200] "HEAD /wordpress HTTP/1.1" 405 HOST "salonia.it" REF " ... show more 4.197.98.193 - - [19/May/2025:21:39:30 +0200] "HEAD /wordpress HTTP/1.1" 405 HOST "salonia.it" REF "http://salonia.it/wordpress" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" gz% "-" 4.197.98.193 - - [19/May/2025:21:39:30 +0200] "HEAD / HTTP/1.1" 405 HOST "salonia.it" REF "http://salonia.it/" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" gz% "-" 4.197.98.193 - - [19/May/2025:21:39:31 +0200] "HEAD /wp HTTP/1.1" 405 HOST "salonia.it" REF "http://salonia.it/wp" UA "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇳🇱 92.63.197.23	17 May 2025	May 17 23:13:12 localhost sshd-session[14564]: banner exchange: Connection from 92.63.197.23 port 65 ... show more May 17 23:13:12 localhost sshd-session[14564]: banner exchange: Connection from 92.63.197.23 port 65304: invalid format May 17 23:19:36 localhost sshd-session[16949]: banner exchange: Connection from 92.63.197.23 port 62524: invalid format May 17 23:26:22 localhost sshd-session[19497]: banner exchange: Connection from 92.63.197.23 port 64823: invalid format ... show less	Brute-Force SSH
🇻🇳 118.70.178.158	17 May 2025	118.70.178.158 - - [17/May/2025:20:44:56 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+a ... show more 118.70.178.158 - - [17/May/2025:20:44:56 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 118.70.178.158 - - [17/May/2025:20:44:56 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 118.70.178.158 - - [17/May/2025:20:44:56 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇹🇷 185.93.69.163	17 May 2025	185.93.69.163 - - [17/May/2025:09:34:01 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+au ... show more 185.93.69.163 - - [17/May/2025:09:34:01 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 185.93.69.163 - - [17/May/2025:09:34:01 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 185.93.69.163 - - [17/May/2025:09:34:01 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇧🇴 190.129.60.240	16 May 2025	190.129.60.240 - - [16/May/2025:21:02:57 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+a ... show more 190.129.60.240 - - [16/May/2025:21:02:57 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 190.129.60.240 - - [16/May/2025:21:02:57 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 190.129.60.240 - - [16/May/2025:21:02:57 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇮🇩 160.20.104.81	16 May 2025	160.20.104.81 - - [16/May/2025:11:42:03 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+au ... show more 160.20.104.81 - - [16/May/2025:11:42:03 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 160.20.104.81 - - [16/May/2025:11:42:03 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 160.20.104.81 - - [16/May/2025:11:42:04 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇮🇪 134.149.82.105	14 May 2025	134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.p ... show more 134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" 134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-includes/Text/network.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" 134.149.82.105 - - [14/May/2025:18:19:57 +0200] "GET /wp-content/upgrade-temp-backup/wp-login.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "-" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack
🇹🇼 111.250.111.153	12 May 2025	111.250.111.153 - - [12/May/2025:11:49:41 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+ ... show more 111.250.111.153 - - [12/May/2025:11:49:41 +0200] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 111.250.111.153 - - [12/May/2025:11:49:43 +0200] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" 111.250.111.153 - - [12/May/2025:11:49:45 +0200] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 403 HOST "salonia.it" REF "-" UA "Custom-AsyncHttpClient" gz% "-" ... show less	Brute-Force Exploited Host Web App Attack