Support Forums

Possible missconfiguration?

Hello everyone,

So I am quiet concerned about this to be honest.

Been asking friends, and posted on Twitter but it looks like no one can tell me exactly what this is, and because I am thick, I need find out why this is happening.

I am trying to find out what can this be caused by, so feel free to see the open analytics.



So let me explain, a couple of days ago, I was looking to my side project the analytics because is popular and I was interested…

Then I saw this IP

and the IP has this URLs attached.

then I this was also a referral.


cftri is something in India


and this matches with eh URLS

Then I happen to see the the raw version and it was linking to this
https://toolkit.addy. codes/

Any clue would be deeply appreciated.

Thank you in advance,


Hi @michael-andreuzza

I’m not sure what is causing you concern, or what you are asking.

Are you wondering why these IP addresses are accessing your site? And what they are looking at paths like /admin?

yeah exactly, that’s exactly the reason.

This is all relatively standard traffic. The 172.x.x.x address range is reserved by IANA for private networks (Wikipedia). It is unfortunate that many people/groups use bots to automate looking for access to restricted areas on sites. If you do not have these areas (which I can see you don’t) why the concern?

This has nothing to do with your configuration.

Here are some apparent sources of traffic to my site

And here are some resources that many people/bots (both legitimate and illegitimate) tried to access

oh, ok.Fair enough.

Well, the concern is because I am not an expert on IP’s and closest areas…

I wa thinking that someone took the code and left the tracking ID there…