芝麻web文件管理V1.00

编辑当前文件:/home/lekhnath/access-logs/deepakpariyar.cityof7lakes.com
45.145.41.224 - - [27/Apr/2025:07:09:13 -0400] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 200 0 "-" "-" 43.166.250.187 - - [27/Apr/2025:08:19:19 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 34.9.177.115 - - [27/Apr/2025:10:25:29 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 34.9.177.115 - - [27/Apr/2025:10:25:32 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 20.196.104.117 - - [27/Apr/2025:12:49:29 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 51.222.253.11 - - [27/Apr/2025:13:36:36 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 54.36.148.115 - - [27/Apr/2025:13:36:36 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 196.127.100.35 - - [27/Apr/2025:14:08:23 -0400] "GET /.env HTTP/1.1" 403 1242 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 43.166.131.228 - - [27/Apr/2025:15:11:29 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 3.110.33.142 - - [27/Apr/2025:16:15:47 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:47 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:47 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:48 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:48 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:48 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:49 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:49 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:49 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.110.33.142 - - [27/Apr/2025:16:15:49 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 66.249.68.34 - - [27/Apr/2025:19:19:39 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.68.35 - - [27/Apr/2025:19:19:39 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 185.12.250.58 - - [27/Apr/2025:19:36:38 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Viewer/99.9.8853.8" 93.158.98.56 - - [27/Apr/2025:19:36:38 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Viewer/99.9.8853.8" 66.249.68.34 - - [27/Apr/2025:20:09:29 -0400] "GET /favicon.ico HTTP/1.1" 404 1251 "-" "Googlebot-Image/1.0" 92.255.85.164 - - [27/Apr/2025:22:21:43 -0400] "GET / HTTP/1.0" 200 0 "http://deepakpariyar.com.np/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0" 43.165.67.57 - - [27/Apr/2025:22:59:19 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 54.36.148.126 - - [28/Apr/2025:00:25:14 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 170.205.30.127 - - [28/Apr/2025:03:37:09 -0400] "GET /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php HTTP/1.1" 200 0 "-" "ShellBot 2.0" 35.245.242.100 - - [28/Apr/2025:04:14:00 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 35.245.242.100 - - [28/Apr/2025:04:14:07 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 98.159.234.52 - - [28/Apr/2025:05:47:44 -0400] "GET /.env HTTP/1.1" 403 1242 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 43.157.168.43 - - [28/Apr/2025:05:48:08 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 107.189.22.17 - - [28/Apr/2025:06:15:41 -0400] "GET /wp-content/plugins/about.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 107.189.22.17 - - [28/Apr/2025:06:15:51 -0400] "GET /geju.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 107.189.22.17 - - [28/Apr/2025:06:16:14 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.145.41.224 - - [28/Apr/2025:07:22:22 -0400] "GET /wp-content/plugins/apikey/apikey.php?test=hello HTTP/1.1" 200 0 "-" "-" 54.36.149.70 - - [28/Apr/2025:08:23:17 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 54.36.148.157 - - [28/Apr/2025:08:23:18 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 54.36.148.184 - - [28/Apr/2025:10:32:48 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 74.225.132.1 - - [28/Apr/2025:11:05:00 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:28 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:29 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:29 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:30 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:30 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:31 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:32 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:32 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [28/Apr/2025:11:43:33 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.135.144.126 - - [28/Apr/2025:11:56:34 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 217.160.202.182 - - [28/Apr/2025:12:36:09 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36 Edg/91.0.864.54" 13.74.143.99 - - [28/Apr/2025:13:31:19 -0400] "GET /sts.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:20 -0400] "GET /wp-hoard.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:20 -0400] "GET /wp-l0gin.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:20 -0400] "GET /priv8.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:20 -0400] "GET /wp-post-editor.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:21 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:21 -0400] "GET /users.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:21 -0400] "GET /classwithtostring.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:21 -0400] "GET /wp-head.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:22 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:22 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:22 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:22 -0400] "GET /wp-header.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:23 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:23 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:23 -0400] "GET /cong.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:23 -0400] "GET /options.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:24 -0400] "GET /wp-content/index.php?x=ooo HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:24 -0400] "GET /wp-admin/options.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:24 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:24 -0400] "GET /1index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:25 -0400] "GET /11index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:25 -0400] "GET /2index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:25 -0400] "GET /3index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:26 -0400] "GET /wp_wrong_datlib.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:26 -0400] "GET /wp-adminincludesclass-wp-media-list-data.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:26 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:26 -0400] "GET /wso.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:27 -0400] "GET /doc.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:27 -0400] "GET /stindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:28 -0400] "GET /alwso.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:28 -0400] "GET /ups.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:29 -0400] "GET /media-admin.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:29 -0400] "GET /sym.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:29 -0400] "GET /sym403.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:30 -0400] "GET /fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:30 -0400] "GET /symlink.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:30 -0400] "GET /shell.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:30 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:31 -0400] "GET /data.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:31 -0400] "GET /wp-blog.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:31 -0400] "GET /b.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:31 -0400] "GET /c.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:32 -0400] "GET /shx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:32 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:32 -0400] "GET /a.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:32 -0400] "GET /old-index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:33 -0400] "GET /FoxWSO.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:33 -0400] "GET /x.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:34 -0400] "GET /403.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:34 -0400] "GET /mini.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:34 -0400] "GET /imagesvuln.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:34 -0400] "GET /edit-form.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:35 -0400] "GET /wikindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:35 -0400] "GET /m.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:35 -0400] "GET /0byte.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:36 -0400] "GET /xx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:36 -0400] "GET /new-index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:36 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:37 -0400] "GET /wp-wso.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:37 -0400] "GET /qindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:37 -0400] "GET /minimo.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:37 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:37 -0400] "GET /V3.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:38 -0400] "GET /V5.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:38 -0400] "GET /up.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:38 -0400] "GET /www.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:39 -0400] "GET /100.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:39 -0400] "GET /777.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:39 -0400] "GET /defau1t.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:40 -0400] "GET /f.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:40 -0400] "GET /xox.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:40 -0400] "GET /o.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:41 -0400] "GET /new.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:41 -0400] "GET /sindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:41 -0400] "GET /baindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:42 -0400] "GET /wi.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:42 -0400] "GET /mar.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:42 -0400] "GET /root.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:43 -0400] "GET /nee.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:43 -0400] "GET /v.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:44 -0400] "GET /z.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:44 -0400] "GET /g.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:44 -0400] "GET /c99.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:45 -0400] "GET /w.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:45 -0400] "GET /ws.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:45 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:46 -0400] "GET /lol.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:46 -0400] "GET /87.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:46 -0400] "GET /7yn.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:47 -0400] "GET /haxor.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:47 -0400] "GET /13.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:48 -0400] "GET /e.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:48 -0400] "GET /r.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:49 -0400] "GET /t.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:49 -0400] "GET /y.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:49 -0400] "GET /u.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:50 -0400] "GET /i.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:50 -0400] "GET /p.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:51 -0400] "GET /q.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:51 -0400] "GET /s.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:52 -0400] "GET /d.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:52 -0400] "GET /h.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:52 -0400] "GET /j.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:53 -0400] "GET /k.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:53 -0400] "GET /l.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:54 -0400] "GET /n.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:54 -0400] "GET /xindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:54 -0400] "GET /kindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:55 -0400] "GET /FoxWSOv1.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:55 -0400] "GET /alf.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:55 -0400] "GET /bb.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:56 -0400] "GET /lf.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:56 -0400] "GET /WSO.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:56 -0400] "GET /xxx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:56 -0400] "GET /hello.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:56 -0400] "GET /ok.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:57 -0400] "GET /if.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:57 -0400] "GET /kk.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:57 -0400] "GET /mrjn.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:58 -0400] "GET /kn.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:58 -0400] "GET /3301.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:58 -0400] "GET /leaf.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:59 -0400] "GET /alex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:59 -0400] "GET /mailer.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:59 -0400] "GET /anone.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:31:59 -0400] "GET /wp-configer.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:00 -0400] "GET /wp-ad.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:00 -0400] "GET /send.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:01 -0400] "GET /3.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:01 -0400] "GET /.wp-cache.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:01 -0400] "GET /sendmail.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:02 -0400] "GET /rahma.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:02 -0400] "GET /nasgor.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:02 -0400] "GET /wp-confirm.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:02 -0400] "GET /alfa123.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:03 -0400] "GET /upload.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:03 -0400] "GET /bypass.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:03 -0400] "GET /wp-one.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:03 -0400] "GET /alexus.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:04 -0400] "GET /wso1337.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:04 -0400] "GET /1337.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:04 -0400] "GET /blog.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:04 -0400] "GET /it.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:05 -0400] "GET /kiss.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:05 -0400] "GET /0.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:05 -0400] "GET /wp2.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:05 -0400] "GET /owl.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:06 -0400] "GET /vuln.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:06 -0400] "GET /ohayo.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:06 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:06 -0400] "GET /cms.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:07 -0400] "GET /wp-uploads.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:07 -0400] "GET /Gel.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:07 -0400] "GET /41.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:08 -0400] "GET /4price.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:08 -0400] "GET /MARIJUANA.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:09 -0400] "GET /marijuana.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:09 -0400] "GET /.fk.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:09 -0400] "GET /XxX.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:09 -0400] "GET /alexuse.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:10 -0400] "GET /Sendemail.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:10 -0400] "GET /content.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:11 -0400] "GET /leafmailer2.8.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:11 -0400] "GET /olu.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:11 -0400] "GET /alexusmailer2.0.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:11 -0400] "GET /rss.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:12 -0400] "GET /alexus-mailer.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:12 -0400] "GET /wp-file.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:12 -0400] "GET /wso2.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:12 -0400] "GET /wso1.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:12 -0400] "GET /olux.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:13 -0400] "GET /wp-info.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:13 -0400] "GET /xl.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:13 -0400] "GET /wp-confiig.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:14 -0400] "GET /file-manager.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:14 -0400] "GET /uploader.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:15 -0400] "GET /leafmailer.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:15 -0400] "GET /ALFA_DATA/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:16 -0400] "GET /.well-known/ALFA_DATA/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:17 -0400] "GET /tmp_images/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:17 -0400] "GET /wp-admin/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:17 -0400] "GET /wp-content/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:17 -0400] "GET /wp-includes/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:18 -0400] "GET /alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:18 -0400] "GET /css/ALFA_DATA/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:18 -0400] "GET /files/ALFA_DATA/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:18 -0400] "GET /images/ALFA_DATA/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:18 -0400] "GET /wp-admin/ALFA_DATA/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:19 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/perl.alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:19 -0400] "GET /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:20 -0400] "GET /date.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:21 -0400] "GET /alfaindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:21 -0400] "GET /.alf.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:21 -0400] "GET /wp-content/plugins/cekidot/alf.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:21 -0400] "GET /wp-content/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:21 -0400] "GET /wp-content/alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:22 -0400] "GET /snd.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:22 -0400] "GET /wp-class.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:24 -0400] "GET /small.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:25 -0400] "GET /wp-content/plugins/upspy/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:25 -0400] "GET /wp-content/plugins/ubh/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:25 -0400] "GET /wp-content/plugins/vwcleanerplugin/bump.php?cache HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:25 -0400] "GET /wp-content/themes/gaukingo/db.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:26 -0400] "GET /wp-content/plugins/three-column-screen-layout/db.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:26 -0400] "GET /wp-content/plugins/xichang/x.php?xi HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:27 -0400] "GET /wp-content/plugins/html404/index.html HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:27 -0400] "GET /wp-content/plugins/wp-db-ajax-made/wp-ajax.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:28 -0400] "GET /Marvins.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:28 -0400] "GET /wp-includes/css/modules.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:28 -0400] "GET /indoxploit.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:29 -0400] "GET /wp-content/plugins/css-ready-sel/file.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:29 -0400] "GET /wp-content/plugins/css-ready/file.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:30 -0400] "GET /wp-content/think.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:30 -0400] "GET /wp-content/plugins/html404/xccc.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:31 -0400] "GET /wp-content/plugins/html404/cry.php.pjpeg HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:31 -0400] "GET //wp-content/plugins/real/v.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:31 -0400] "GET /wp-content/plugins/html404/wso25.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:31 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/udd.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:32 -0400] "GET /libraries/joomla/css.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:32 -0400] "GET /libraries/joomla/jmails.php?u HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:32 -0400] "GET /libraries/joomla/jmail.php?u HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:33 -0400] "GET /images/vuln.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:33 -0400] "GET /tmp/vuln.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:33 -0400] "GET /rxr.php?rxr HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:33 -0400] "GET /modules/modules/modules.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:34 -0400] "GET /error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:34 -0400] "GET //wp-content/themes/fitnessbase/404.php?ok HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:34 -0400] "GET //wp-add-admin.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:34 -0400] "GET /RxR.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:34 -0400] "GET //modules/mod_simplefileuploadv1.3/elements/udd.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:35 -0400] "GET /components/com_b2jcontact/izoc.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:35 -0400] "GET /administrator/templates/bluestork/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:35 -0400] "GET /administrator/templates/hathor/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:35 -0400] "GET /administrator/templates/hathor/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:36 -0400] "GET /administrator/templates/isis/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:36 -0400] "GET /administrator/templates/isis/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:36 -0400] "GET /templates/beez/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:36 -0400] "GET /templates/ja_purity/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:36 -0400] "GET /templates/rhuk_milkyway/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:37 -0400] "GET /templates/+theme+/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:37 -0400] "GET /templates/+theme+/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:37 -0400] "GET /templates/beez3/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:37 -0400] "GET /templates/beez3/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:37 -0400] "GET /templates/beez5/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:38 -0400] "GET /templates/beez5/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:38 -0400] "GET /templates/beez_20/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:38 -0400] "GET /templates/beez_20/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:38 -0400] "GET /templates/protostar/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:39 -0400] "GET /templates/protostar/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:39 -0400] "GET /templates/atomic/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:39 -0400] "GET /templates/atomic/error.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:40 -0400] "GET /wp-admin/network/wp-footer.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:40 -0400] "GET /wp-content/vuln.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:40 -0400] "GET /upel.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:40 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:40 -0400] "GET /wp-content/uploads/+year+/+month+/ HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:41 -0400] "GET /license.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:41 -0400] "GET /wp-content/plugins/ppus/up.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:41 -0400] "GET /098.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:41 -0400] "GET /new_license.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:41 -0400] "GET /wp-content/plugins/theme-configurator/mini.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:42 -0400] "GET /wp-content/plugins/widget-logic/mini.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:42 -0400] "GET /wp-admin/css/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:42 -0400] "GET /1975.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:42 -0400] "GET /wp-includes/wp-class.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:42 -0400] "GET /xleet-shell.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:42 -0400] "GET /wp-content/radio.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:43 -0400] "GET /wp-includes/radio.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:43 -0400] "GET /fx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:43 -0400] "GET /wp-admin/images/atomlib.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:43 -0400] "GET /gel4y.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:43 -0400] "GET /jindex.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:44 -0400] "GET /wp-content/about.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:44 -0400] "GET /sh.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:44 -0400] "GET /wp-includes/991176.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:44 -0400] "GET /wp-admin/maint/about.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:44 -0400] "GET /fox.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:45 -0400] "GET /wp-admin/x.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:45 -0400] "GET /server.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:45 -0400] "GET /wp-includes/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:45 -0400] "GET /4.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:45 -0400] "GET /5.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:46 -0400] "GET /images/about.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:46 -0400] "GET /xmlrpc.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:47 -0400] "GET /wp-load.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:47 -0400] "GET /wp-login.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:47 -0400] "GET /wp-admin/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:47 -0400] "GET /mari.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:47 -0400] "GET /swm.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:48 -0400] "GET /wp-admin/radio.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:48 -0400] "GET /wp-includes/about.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:48 -0400] "GET /wp-content/wso.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:48 -0400] "GET /wp-admin/wso.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:48 -0400] "GET /w3llstore.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:49 -0400] "GET /wp-content/fx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:49 -0400] "GET /wp-content/x.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:49 -0400] "GET /wp-admin/alfa.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:49 -0400] "GET /gank.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:49 -0400] "GET /style.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:50 -0400] "GET /s_e.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:50 -0400] "GET /s_ne.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:50 -0400] "GET /beence.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:50 -0400] "GET /wp-signin.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:50 -0400] "GET /moduless.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:50 -0400] "GET /export.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:51 -0400] "GET /legion.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:51 -0400] "GET /system_log.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:51 -0400] "GET /shells.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:51 -0400] "GET /wp-content/plugins/ubh/up.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:51 -0400] "GET /wp-content/mu-plugins/db-safe-mode.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:52 -0400] "GET /wp-content/db-cache.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:52 -0400] "GET /wp-content/plugins/backup_index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:52 -0400] "GET /wp-includes/css/wp-config.php HTTP/1.1" 403 1242 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:52 -0400] "GET /wp-content/themes/config.bak.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:52 -0400] "GET /wp-includes/images/css.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:53 -0400] "GET /wp-includes/css/css.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:53 -0400] "GET /wp-content/uploads/wp-stream.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:53 -0400] "GET /wp-beckup.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:53 -0400] "GET /wp-blog-post.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:53 -0400] "GET /wp-content/uploads/wp-blockdown.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:54 -0400] "GET /wp-admin/includes/class-wp-media-list-data.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:54 -0400] "GET /wp-admin/style.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:54 -0400] "GET /6.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:54 -0400] "GET /7.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:54 -0400] "GET /8.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:55 -0400] "GET /9.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:55 -0400] "GET /10.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:55 -0400] "GET /wp_class_datalib.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:55 -0400] "GET /wp-includes/wp_class_datlib.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:56 -0400] "GET /wp-includes/pomo/wp_class_datalib.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:56 -0400] "GET /01.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:56 -0400] "GET /1xleet.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:56 -0400] "GET /wp-content/shell.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:56 -0400] "GET /wp-admin/shell.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:57 -0400] "GET /wp-admin/wp.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:57 -0400] "GET /4index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:57 -0400] "GET /5index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:57 -0400] "GET /6index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:57 -0400] "GET /7index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:58 -0400] "GET /8index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:58 -0400] "GET /9index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:58 -0400] "GET /Leaf.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:58 -0400] "GET /Uploader.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:58 -0400] "GET /wp-includes/wp-red.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:58 -0400] "GET /.well-known/radio.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:59 -0400] "GET /alfashell.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:59 -0400] "GET /am.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:59 -0400] "GET /blog/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:59 -0400] "GET /contacts.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:32:59 -0400] "GET /demo328/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:00 -0400] "GET /gif.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:00 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:00 -0400] "GET /images/sym.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:00 -0400] "GET /lab.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:00 -0400] "GET /leaf_mailer.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:01 -0400] "GET /leaf_php.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:01 -0400] "GET /libraries/joomla/jmail.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:01 -0400] "GET /libraries/joomla/jmails.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:01 -0400] "GET /mailer1.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:02 -0400] "GET /ms.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:02 -0400] "GET /rxr.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:02 -0400] "GET /srx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:02 -0400] "GET /tuco.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:02 -0400] "GET /unix.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:03 -0400] "GET /uploads/up.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:03 -0400] "GET /wp-admin/css/colors/coffee/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:03 -0400] "GET /wp-admin/css/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:03 -0400] "GET /wp-admin/includes/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:03 -0400] "GET /wp-admin/maint/fw.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:04 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:04 -0400] "GET /wp-content/plugins/vwcleanerplugin/bump.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:04 -0400] "GET /wp-content/plugins/xichang/x.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:04 -0400] "GET /wp-content/plugins/zedd/1.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:04 -0400] "GET /wp-content/up.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:04 -0400] "GET /wp-content/wp.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:05 -0400] "GET /wp-mna.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:05 -0400] "GET /uploads/upload.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:05 -0400] "GET /wpx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:05 -0400] "GET /images/c99.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:06 -0400] "GET /xhell.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:06 -0400] "GET /xmrlpc.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:06 -0400] "GET /xz.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:06 -0400] "GET /yuuki.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:07 -0400] "GET /wp-admin/shapes.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:07 -0400] "GET /wp-content/plugins/upspy/con.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:07 -0400] "GET /wp-content/plugins/upspy/up.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:07 -0400] "GET /wp-content/plugins/upspy/sllolx.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:07 -0400] "GET /database.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:08 -0400] "GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:08 -0400] "GET /shell20211028.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:08 -0400] "GET /repeater.php HTTP/1.1" 200 0 "-" "-" 13.74.143.99 - - [28/Apr/2025:13:33:08 -0400] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 200 0 "-" "-" 52.88.40.206 - - [28/Apr/2025:18:06:07 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:07 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 52.88.40.206 - - [28/Apr/2025:18:06:08 -0400] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 43.166.136.202 - - [28/Apr/2025:18:45:16 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 35.231.128.98 - - [28/Apr/2025:19:28:16 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 170.205.30.127 - - [28/Apr/2025:20:09:45 -0400] "GET /setup-config.php HTTP/1.1" 200 0 "-" "ShellBot 2.0" 185.169.180.28 - - [29/Apr/2025:00:04:22 -0400] "POST /alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:22 -0400] "POST /alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:22 -0400] "POST /alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:23 -0400] "POST /alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:23 -0400] "POST /alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:23 -0400] "POST /alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:24 -0400] "GET /alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:24 -0400] "GET /alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:24 -0400] "GET /alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:24 -0400] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:25 -0400] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:25 -0400] "POST /ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:25 -0400] "POST /ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:26 -0400] "POST /ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:26 -0400] "POST /ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:26 -0400] "GET /ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:27 -0400] "GET /ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:27 -0400] "GET /ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:28 -0400] "POST /assets/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:28 -0400] "POST /assets/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:28 -0400] "POST /assets/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:29 -0400] "POST /assets/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:29 -0400] "POST /assets/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:29 -0400] "POST /assets/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:30 -0400] "GET /assets/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:30 -0400] "GET /assets/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:30 -0400] "GET /assets/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:30 -0400] "POST /assets/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:31 -0400] "POST /assets/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:31 -0400] "POST /assets/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:31 -0400] "POST /assets/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:32 -0400] "POST /assets/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:32 -0400] "POST /assets/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:32 -0400] "GET /assets/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:33 -0400] "GET /assets/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:33 -0400] "GET /assets/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:33 -0400] "POST /upload/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:34 -0400] "POST /upload/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:34 -0400] "POST /upload/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:34 -0400] "POST /upload/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:35 -0400] "POST /upload/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:35 -0400] "POST /upload/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:35 -0400] "GET /upload/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:36 -0400] "GET /upload/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:36 -0400] "GET /upload/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:36 -0400] "POST /upload/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:36 -0400] "POST /upload/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:37 -0400] "POST /upload/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:37 -0400] "POST /upload/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:37 -0400] "POST /upload/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:38 -0400] "POST /upload/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:38 -0400] "GET /upload/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:38 -0400] "GET /upload/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:38 -0400] "GET /upload/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:39 -0400] "POST /uploads/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:39 -0400] "POST /uploads/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:39 -0400] "POST /uploads/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:39 -0400] "POST /uploads/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:40 -0400] "POST /uploads/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:40 -0400] "POST /uploads/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:40 -0400] "GET /uploads/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:40 -0400] "GET /uploads/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:41 -0400] "GET /uploads/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:41 -0400] "POST /uploads/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:41 -0400] "POST /uploads/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:42 -0400] "POST /uploads/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:42 -0400] "POST /uploads/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:42 -0400] "POST /uploads/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:43 -0400] "POST /uploads/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:43 -0400] "GET /uploads/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:43 -0400] "GET /uploads/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:43 -0400] "GET /uploads/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:44 -0400] "POST /assets/upload/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:44 -0400] "POST /assets/upload/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:44 -0400] "POST /assets/upload/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:44 -0400] "POST /assets/upload/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:45 -0400] "POST /assets/upload/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:45 -0400] "POST /assets/upload/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:45 -0400] "GET /assets/upload/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:46 -0400] "GET /assets/upload/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:46 -0400] "GET /assets/upload/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:47 -0400] "POST /assets/upload/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:48 -0400] "POST /assets/upload/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:49 -0400] "POST /assets/upload/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:49 -0400] "POST /assets/upload/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:50 -0400] "POST /assets/upload/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:50 -0400] "POST /assets/upload/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:50 -0400] "GET /assets/upload/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:50 -0400] "GET /assets/upload/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:51 -0400] "GET /assets/upload/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:51 -0400] "POST /assets/uploads/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:52 -0400] "POST /assets/uploads/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:52 -0400] "POST /assets/uploads/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:52 -0400] "POST /assets/uploads/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:53 -0400] "POST /assets/uploads/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:53 -0400] "POST /assets/uploads/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:53 -0400] "GET /assets/uploads/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:54 -0400] "GET /assets/uploads/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:54 -0400] "GET /assets/uploads/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:54 -0400] "POST /assets/uploads/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:55 -0400] "POST /assets/uploads/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:55 -0400] "POST /assets/uploads/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:55 -0400] "POST /assets/uploads/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:56 -0400] "POST /assets/uploads/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:56 -0400] "POST /assets/uploads/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:57 -0400] "GET /assets/uploads/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:57 -0400] "GET /assets/uploads/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:57 -0400] "GET /assets/uploads/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:57 -0400] "POST /wp-content/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:58 -0400] "POST /wp-content/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:58 -0400] "POST /wp-content/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:58 -0400] "POST /wp-content/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:59 -0400] "POST /wp-content/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:04:59 -0400] "POST /wp-content/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:00 -0400] "GET /wp-content/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:01 -0400] "GET /wp-content/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:02 -0400] "GET /wp-content/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:02 -0400] "POST /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:02 -0400] "POST /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:02 -0400] "POST /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:03 -0400] "POST /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:03 -0400] "POST /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:03 -0400] "POST /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:04 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:04 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:04 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/wp-content/uploads/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:05 -0400] "POST /wp-content/uploads/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:05 -0400] "POST /wp-content/uploads/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:06 -0400] "POST /wp-content/uploads/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:06 -0400] "POST /wp-content/uploads/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:06 -0400] "POST /wp-content/uploads/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:06 -0400] "POST /wp-content/uploads/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:07 -0400] "GET /wp-content/uploads/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:08 -0400] "GET /wp-content/uploads/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:08 -0400] "GET /wp-content/uploads/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:09 -0400] "POST /wp-content/plugins/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:10 -0400] "POST /wp-content/plugins/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:10 -0400] "POST /wp-content/plugins/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:11 -0400] "POST /wp-content/plugins/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:11 -0400] "POST /wp-content/plugins/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:11 -0400] "POST /wp-content/plugins/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:11 -0400] "GET /wp-content/plugins/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:12 -0400] "GET /wp-content/plugins/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:13 -0400] "GET /wp-content/plugins/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:13 -0400] "POST /wp-content/plugins/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:13 -0400] "POST /wp-content/plugins/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:14 -0400] "POST /wp-content/plugins/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:14 -0400] "POST /wp-content/plugins/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:14 -0400] "POST /wp-content/plugins/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:14 -0400] "POST /wp-content/plugins/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:15 -0400] "GET /wp-content/plugins/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:15 -0400] "GET /wp-content/plugins/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:15 -0400] "GET /wp-content/plugins/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:16 -0400] "POST /wp-content/themes/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:16 -0400] "POST /wp-content/themes/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:16 -0400] "POST /wp-content/themes/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:17 -0400] "POST /wp-content/themes/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:17 -0400] "POST /wp-content/themes/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:17 -0400] "POST /wp-content/themes/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:17 -0400] "GET /wp-content/themes/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:18 -0400] "GET /wp-content/themes/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:18 -0400] "GET /wp-content/themes/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:18 -0400] "POST /wp-content/themes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:18 -0400] "POST /wp-content/themes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:19 -0400] "POST /wp-content/themes/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:19 -0400] "POST /wp-content/themes/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:19 -0400] "POST /wp-content/themes/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:20 -0400] "POST /wp-content/themes/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:20 -0400] "GET /wp-content/themes/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:21 -0400] "GET /wp-content/themes/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:21 -0400] "GET /wp-content/themes/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:21 -0400] "POST /wp-content/upgrade/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:21 -0400] "POST /wp-content/upgrade/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:22 -0400] "POST /wp-content/upgrade/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:22 -0400] "POST /wp-content/upgrade/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:23 -0400] "POST /wp-content/upgrade/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:23 -0400] "POST /wp-content/upgrade/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:23 -0400] "GET /wp-content/upgrade/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:24 -0400] "GET /wp-content/upgrade/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:24 -0400] "GET /wp-content/upgrade/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:24 -0400] "POST /wp-content/upgrade/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:25 -0400] "POST /wp-content/upgrade/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:25 -0400] "POST /wp-content/upgrade/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:26 -0400] "POST /wp-content/upgrade/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:26 -0400] "POST /wp-content/upgrade/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:27 -0400] "POST /wp-content/upgrade/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:27 -0400] "GET /wp-content/upgrade/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:27 -0400] "GET /wp-content/upgrade/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:27 -0400] "GET /wp-content/upgrade/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:28 -0400] "POST /wp-content/updraft/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:28 -0400] "POST /wp-content/updraft/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:28 -0400] "POST /wp-content/updraft/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:28 -0400] "POST /wp-content/updraft/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:29 -0400] "POST /wp-content/updraft/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:29 -0400] "POST /wp-content/updraft/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:29 -0400] "GET /wp-content/updraft/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:29 -0400] "GET /wp-content/updraft/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:30 -0400] "GET /wp-content/updraft/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:30 -0400] "POST /wp-content/updraft/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:30 -0400] "POST /wp-content/updraft/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:30 -0400] "POST /wp-content/updraft/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:31 -0400] "POST /wp-content/updraft/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:31 -0400] "POST /wp-content/updraft/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:31 -0400] "POST /wp-content/updraft/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:32 -0400] "GET /wp-content/updraft/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:32 -0400] "GET /wp-content/updraft/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:32 -0400] "GET /wp-content/updraft/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:33 -0400] "POST /wp-content/plugins/library/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:33 -0400] "POST /wp-content/plugins/library/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:33 -0400] "POST /wp-content/plugins/library/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:34 -0400] "POST /wp-content/plugins/library/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:34 -0400] "POST /wp-content/plugins/library/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:34 -0400] "POST /wp-content/plugins/library/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:34 -0400] "GET /wp-content/plugins/library/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:35 -0400] "GET /wp-content/plugins/library/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:35 -0400] "GET /wp-content/plugins/library/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:35 -0400] "POST /wp-content/plugins/library/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:35 -0400] "POST /wp-content/plugins/library/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:36 -0400] "POST /wp-content/plugins/library/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:36 -0400] "POST /wp-content/plugins/library/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:36 -0400] "POST /wp-content/plugins/library/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:36 -0400] "POST /wp-content/plugins/library/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:37 -0400] "GET /wp-content/plugins/library/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:37 -0400] "GET /wp-content/plugins/library/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:37 -0400] "GET /wp-content/plugins/library/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:37 -0400] "POST /wp-admin/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:38 -0400] "POST /wp-admin/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:38 -0400] "POST /wp-admin/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:38 -0400] "POST /wp-admin/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:39 -0400] "POST /wp-admin/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:39 -0400] "POST /wp-admin/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:39 -0400] "GET /wp-admin/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:39 -0400] "GET /wp-admin/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:40 -0400] "GET /wp-admin/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:40 -0400] "POST /wp-admin/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:40 -0400] "POST /wp-admin/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:41 -0400] "POST /wp-admin/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:41 -0400] "POST /wp-admin/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:41 -0400] "POST /wp-admin/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:42 -0400] "POST /wp-admin/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:42 -0400] "GET /wp-admin/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:42 -0400] "GET /wp-admin/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:43 -0400] "GET /wp-admin/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:43 -0400] "POST /wp-includes/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:43 -0400] "POST /wp-includes/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:44 -0400] "POST /wp-includes/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:44 -0400] "POST /wp-includes/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:44 -0400] "POST /wp-includes/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:44 -0400] "POST /wp-includes/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:45 -0400] "GET /wp-includes/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:45 -0400] "GET /wp-includes/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:45 -0400] "GET /wp-includes/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:46 -0400] "POST /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:46 -0400] "POST /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:46 -0400] "POST /wp-includes/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:46 -0400] "POST /wp-includes/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:47 -0400] "POST /wp-includes/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:47 -0400] "POST /wp-includes/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:47 -0400] "GET /wp-includes/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:47 -0400] "GET /wp-includes/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:48 -0400] "GET /wp-includes/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:48 -0400] "POST /.well-known/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:48 -0400] "POST /.well-known/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:48 -0400] "POST /.well-known/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:49 -0400] "POST /.well-known/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:49 -0400] "POST /.well-known/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:49 -0400] "POST /.well-known/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:49 -0400] "GET /.well-known/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:50 -0400] "GET /.well-known/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:50 -0400] "GET /.well-known/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:50 -0400] "POST /.well-known/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:51 -0400] "POST /.well-known/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:51 -0400] "POST /.well-known/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:51 -0400] "POST /.well-known/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:52 -0400] "POST /.well-known/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:52 -0400] "POST /.well-known/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:52 -0400] "GET /.well-known/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:53 -0400] "GET /.well-known/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:53 -0400] "GET /.well-known/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:53 -0400] "POST /.well-known/acme-challenge/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:53 -0400] "POST /.well-known/acme-challenge/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:54 -0400] "POST /.well-known/acme-challenge/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:54 -0400] "POST /.well-known/acme-challenge/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:54 -0400] "POST /.well-known/acme-challenge/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:54 -0400] "POST /.well-known/acme-challenge/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:55 -0400] "GET /.well-known/acme-challenge/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:55 -0400] "GET /.well-known/acme-challenge/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:55 -0400] "GET /.well-known/acme-challenge/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:55 -0400] "POST /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:56 -0400] "POST /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:56 -0400] "POST /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:56 -0400] "POST /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:56 -0400] "POST /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:57 -0400] "POST /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:57 -0400] "GET /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:57 -0400] "GET /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:58 -0400] "GET /.well-known/acme-challenge/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:58 -0400] "POST /.well-known/pki-validation/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:58 -0400] "POST /.well-known/pki-validation/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:58 -0400] "POST /.well-known/pki-validation/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:59 -0400] "POST /.well-known/pki-validation/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:59 -0400] "POST /.well-known/pki-validation/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:59 -0400] "POST /.well-known/pki-validation/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:05:59 -0400] "GET /.well-known/pki-validation/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:00 -0400] "GET /.well-known/pki-validation/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:00 -0400] "GET /.well-known/pki-validation/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:00 -0400] "POST /.well-known/pki-validation/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:00 -0400] "POST /.well-known/pki-validation/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:00 -0400] "POST /.well-known/pki-validation/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:01 -0400] "POST /.well-known/pki-validation/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:01 -0400] "POST /.well-known/pki-validation/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:01 -0400] "POST /.well-known/pki-validation/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:01 -0400] "GET /.well-known/pki-validation/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:01 -0400] "GET /.well-known/pki-validation/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:02 -0400] "GET /.well-known/pki-validation/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:02 -0400] "POST /.tmb/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:02 -0400] "POST /.tmb/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:02 -0400] "POST /.tmb/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:03 -0400] "POST /.tmb/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:03 -0400] "POST /.tmb/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:04 -0400] "POST /.tmb/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:04 -0400] "GET /.tmb/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:04 -0400] "GET /.tmb/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:04 -0400] "GET /.tmb/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:05 -0400] "POST /.tmb/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:05 -0400] "POST /.tmb/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:05 -0400] "POST /.tmb/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:05 -0400] "POST /.tmb/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:06 -0400] "POST /.tmb/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:06 -0400] "POST /.tmb/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:06 -0400] "GET /.tmb/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:06 -0400] "GET /.tmb/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:07 -0400] "GET /.tmb/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:07 -0400] "POST /.quarantine/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:07 -0400] "POST /.quarantine/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:08 -0400] "POST /.quarantine/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:08 -0400] "POST /.quarantine/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:08 -0400] "POST /.quarantine/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:08 -0400] "POST /.quarantine/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:09 -0400] "GET /.quarantine/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:09 -0400] "GET /.quarantine/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:09 -0400] "GET /.quarantine/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:09 -0400] "POST /.quarantine/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:10 -0400] "POST /.quarantine/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:10 -0400] "POST /.quarantine/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:10 -0400] "POST /.quarantine/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:10 -0400] "POST /.quarantine/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:11 -0400] "POST /.quarantine/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:11 -0400] "GET /.quarantine/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:11 -0400] "GET /.quarantine/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:11 -0400] "GET /.quarantine/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:12 -0400] "POST /cgi-bin/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:12 -0400] "POST /cgi-bin/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:13 -0400] "POST /cgi-bin/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:13 -0400] "POST /cgi-bin/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:13 -0400] "POST /cgi-bin/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:13 -0400] "POST /cgi-bin/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:14 -0400] "GET /cgi-bin/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:14 -0400] "GET /cgi-bin/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:14 -0400] "GET /cgi-bin/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:14 -0400] "POST /cgi-bin/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:14 -0400] "POST /cgi-bin/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:15 -0400] "POST /cgi-bin/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:15 -0400] "POST /cgi-bin/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:15 -0400] "POST /cgi-bin/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:15 -0400] "POST /cgi-bin/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:15 -0400] "GET /cgi-bin/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:16 -0400] "GET /cgi-bin/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:16 -0400] "GET /cgi-bin/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:16 -0400] "POST /images/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:17 -0400] "POST /images/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:17 -0400] "POST /images/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:17 -0400] "POST /images/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:17 -0400] "POST /images/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:18 -0400] "POST /images/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:18 -0400] "GET /images/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:18 -0400] "GET /images/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:18 -0400] "GET /images/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:19 -0400] "POST /images/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:19 -0400] "POST /images/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:19 -0400] "POST /images/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:19 -0400] "POST /images/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:20 -0400] "POST /images/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:20 -0400] "POST /images/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:20 -0400] "GET /images/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:20 -0400] "GET /images/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:21 -0400] "GET /images/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:21 -0400] "POST /components/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:21 -0400] "POST /components/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:21 -0400] "POST /components/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:22 -0400] "POST /components/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:22 -0400] "POST /components/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:22 -0400] "POST /components/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:22 -0400] "GET /components/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:23 -0400] "GET /components/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:23 -0400] "GET /components/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:23 -0400] "POST /components/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:24 -0400] "POST /components/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:24 -0400] "POST /components/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:25 -0400] "POST /components/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:25 -0400] "POST /components/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:26 -0400] "POST /components/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:26 -0400] "GET /components/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:26 -0400] "GET /components/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:26 -0400] "GET /components/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:27 -0400] "POST /wordpress/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:27 -0400] "POST /wordpress/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:28 -0400] "POST /wordpress/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 84.170.131.71 - - [28/Apr/2025:23:33:25 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36 Edg/91.0.864.54" 185.169.180.28 - - [29/Apr/2025:00:06:28 -0400] "POST /wordpress/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:28 -0400] "POST /wordpress/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:28 -0400] "POST /wordpress/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:29 -0400] "GET /wordpress/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:29 -0400] "GET /wordpress/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:29 -0400] "GET /wordpress/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:30 -0400] "POST /wordpress/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:30 -0400] "POST /wordpress/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:31 -0400] "POST /wordpress/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:31 -0400] "POST /wordpress/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:31 -0400] "POST /wordpress/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:31 -0400] "POST /wordpress/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:32 -0400] "GET /wordpress/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:32 -0400] "GET /wordpress/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:33 -0400] "GET /wordpress/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:33 -0400] "POST /wp/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:33 -0400] "POST /wp/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:34 -0400] "POST /wp/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:34 -0400] "POST /wp/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:34 -0400] "POST /wp/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:35 -0400] "POST /wp/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:35 -0400] "GET /wp/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:35 -0400] "GET /wp/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:36 -0400] "GET /wp/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:36 -0400] "POST /wp/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:36 -0400] "POST /wp/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:37 -0400] "POST /wp/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:37 -0400] "POST /wp/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:38 -0400] "POST /wp/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:38 -0400] "POST /wp/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:38 -0400] "GET /wp/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:39 -0400] "GET /wp/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:39 -0400] "GET /wp/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:39 -0400] "POST /blog/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:40 -0400] "POST /blog/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:40 -0400] "POST /blog/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:41 -0400] "POST /blog/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:41 -0400] "POST /blog/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:41 -0400] "POST /blog/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:41 -0400] "GET /blog/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:42 -0400] "GET /blog/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:42 -0400] "GET /blog/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:42 -0400] "POST /blog/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:42 -0400] "POST /blog/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:43 -0400] "POST /blog/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:43 -0400] "POST /blog/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:43 -0400] "POST /blog/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:44 -0400] "POST /blog/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:44 -0400] "GET /blog/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:44 -0400] "GET /blog/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:44 -0400] "GET /blog/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:45 -0400] "POST /new/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:45 -0400] "POST /new/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:45 -0400] "POST /new/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:45 -0400] "POST /new/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:46 -0400] "POST /new/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:46 -0400] "POST /new/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:46 -0400] "GET /new/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:47 -0400] "GET /new/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:47 -0400] "GET /new/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:47 -0400] "POST /new/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:47 -0400] "POST /new/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:48 -0400] "POST /new/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:48 -0400] "POST /new/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:48 -0400] "POST /new/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:48 -0400] "POST /new/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:49 -0400] "GET /new/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:49 -0400] "GET /new/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:50 -0400] "GET /new/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:50 -0400] "POST /old/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:50 -0400] "POST /old/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:50 -0400] "POST /old/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:51 -0400] "POST /old/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:51 -0400] "POST /old/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:51 -0400] "POST /old/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:51 -0400] "GET /old/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:52 -0400] "GET /old/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:52 -0400] "GET /old/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:52 -0400] "POST /old/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:52 -0400] "POST /old/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:53 -0400] "POST /old/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:53 -0400] "POST /old/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:53 -0400] "POST /old/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:54 -0400] "POST /old/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:54 -0400] "GET /old/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:54 -0400] "GET /old/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:54 -0400] "GET /old/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:55 -0400] "POST /backup/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:55 -0400] "POST /backup/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:55 -0400] "POST /backup/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:55 -0400] "POST /backup/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:55 -0400] "POST /backup/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:56 -0400] "POST /backup/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:56 -0400] "GET /backup/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:56 -0400] "GET /backup/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:56 -0400] "GET /backup/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:57 -0400] "POST /backup/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:57 -0400] "POST /backup/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:57 -0400] "POST /backup/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:58 -0400] "POST /backup/ALFA_DATA/alfacgiapi/bash.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:58 -0400] "POST /backup/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:58 -0400] "POST /backup/ALFA_DATA/alfacgiapi/py.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:58 -0400] "GET /backup/ALFA_DATA/alfacgiapi/index.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:59 -0400] "GET /backup/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:59 -0400] "GET /backup/ALFA_DATA/alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:06:59 -0400] "GET /un.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:00 -0400] "GET /foxx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:01 -0400] "GET /wawe.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:02 -0400] "GET /js.php?get HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:02 -0400] "GET /phpinfo.php?re@=vo@ HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:03 -0400] "GET /wp-email.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:04 -0400] "GET /wp-booking.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:04 -0400] "GET /fierza.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:05 -0400] "GET /load.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:06 -0400] "GET /wp-content/themes/fitnessbase/dev.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:06 -0400] "GET /wp-content/themes/fitnessbase/crp.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:07 -0400] "GET /alpha.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:07 -0400] "GET /tinyfilemanager.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:08 -0400] "GET /filemanager.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:09 -0400] "GET /manager.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:09 -0400] "GET /wp-content.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:10 -0400] "GET /wp-content/themes/alera/alpha.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:10 -0400] "GET /wp-content/plugins/wp-diambar/includes/loadme.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:11 -0400] "GET /lock360.php?daksldlkdsadas=1 HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:11 -0400] "GET /5.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:14 -0400] "GET /01.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:14 -0400] "GET /.well-known/pki-validation/wp-signup.php HTTP/1.1" 404 1251 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:15 -0400] "GET /.well-known/wp-signup.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:15 -0400] "GET /jindex.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:16 -0400] "GET /0o.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:17 -0400] "GET /ciis.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:17 -0400] "GET /zfox.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:18 -0400] "GET /zf.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:19 -0400] "GET /room.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:19 -0400] "GET /xd.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:20 -0400] "GET /adriv.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:20 -0400] "GET /gecko.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:22 -0400] "GET /tonant.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:23 -0400] "GET /b.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:25 -0400] "GET /xleet-shell.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:26 -0400] "GET /4mosan.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:27 -0400] "GET /cong.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:28 -0400] "GET /config.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:29 -0400] "GET /wp-key.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:29 -0400] "GET /wp-conctent.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:30 -0400] "GET /flame.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:31 -0400] "GET /wp-content/flame.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:32 -0400] "GET /block-patwp.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:33 -0400] "GET /bre.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:35 -0400] "GET /lx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:36 -0400] "GET /991176.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:36 -0400] "GET /ffAA531.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:37 -0400] "GET /wp-help.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:38 -0400] "GET /un.php?f=f HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:39 -0400] "GET /un2.php?f=f HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:39 -0400] "GET /wp-posts.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:40 -0400] "GET /xl.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:41 -0400] "GET /ww.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:41 -0400] "GET /testwp.php?wp=1 HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:42 -0400] "GET /kyami.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:43 -0400] "GET /wp-includes/class-wp-other.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:44 -0400] "GET /unknown.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:44 -0400] "GET /1975.phP HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:45 -0400] "GET /Mo2AaAaAaPrivateShell.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:45 -0400] "GET /god4m.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:46 -0400] "GET /tuco.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:46 -0400] "GET /x.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:47 -0400] "GET /w.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:47 -0400] "GET /shl.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:48 -0400] "GET /wp-class.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:49 -0400] "GET /info.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:50 -0400] "GET /o.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:50 -0400] "GET /shx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:51 -0400] "GET /l.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:52 -0400] "GET /hi.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:52 -0400] "GET /readme.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:53 -0400] "GET /pi.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:53 -0400] "GET /wp-content/themes/noriumportfolio/img_screen.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:54 -0400] "GET /wp-content/themes/noriumportfolio/doc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:55 -0400] "GET /wp-content/themes/noriumportfolio/alpha.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:55 -0400] "GET /wp-content/themes/noriumportfolio/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:56 -0400] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:56 -0400] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:57 -0400] "GET /wp-content/themes/skatepark/alpha.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:58 -0400] "GET /wp-content/themes/skatepark/img_screen.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:58 -0400] "GET /wp-content/themes/skatepark/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:07:59 -0400] "GET /wp-content/themes/skatepark/doc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:00 -0400] "GET /wp-content/plugins/db/mar.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:01 -0400] "GET /wp-content/themes/wp-pridmag/22x.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:01 -0400] "GET /wp-content/plugins/ndak/1.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:02 -0400] "GET /wp-content/plugins/ndak/marijuana.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:03 -0400] "GET /wp-content/themes/workart/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:03 -0400] "GET /wp-content/plugins/cakil/up.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:04 -0400] "GET /wp-content/plugins/cache-wordpress/wp-activates.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:05 -0400] "GET /wp-content/plugins/cache-wordpress/payment.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:05 -0400] "GET /wp-content/plugins/cekidot/readme.txt HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:06 -0400] "GET /wp-content/plugins/cekidot/mar.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:06 -0400] "GET /wp-content/themes/workart/doc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:07 -0400] "GET /wp-content/themes/theme/gr.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:08 -0400] "GET /wp-content/themes/pridmag/init.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:09 -0400] "GET /wp-content/themes/jobart/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:10 -0400] "GET /wp-content/themes/jobart/doc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:10 -0400] "GET /wp-content/themes/cepair/doc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:11 -0400] "GET /wp-content/themes/cakiltheme/up.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:12 -0400] "GET /wp-content/themes/cakiltheme/idx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:13 -0400] "GET /wp-content/themes/wp-pridmag/status.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:14 -0400] "GET /wp-content/themes/wp-pridmag/up.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:15 -0400] "GET /wp-content/themes/wp-pridmag/init.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:15 -0400] "GET /wp-content/themes/rishi/doc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:16 -0400] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:17 -0400] "GET /wp-content/themes/rishi/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:18 -0400] "GET /wp-content/plugins/virr/v.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:18 -0400] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:20 -0400] "GET /wp-content/plugins/virr/uploader.php?uploader HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:20 -0400] "GET /wp-content/plugins/db/uploader.php?uploader HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:21 -0400] "GET /wp-content/plugins/wp-freeform/wawe.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:21 -0400] "GET /wp-content/plugins/wp-freeform/includes/loadme.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:22 -0400] "GET /wp-content/plugins/wp-freeform/style.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:23 -0400] "GET /?loadme HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:24 -0400] "GET /galekjaya.php?raimu=tgl99 HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:24 -0400] "GET /r00t.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:25 -0400] "GET /Xzd.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:25 -0400] "GET /radio.php?pass=shell HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:26 -0400] "GET /content.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:27 -0400] "GET /about.php HTTP/1.1" 404 1251 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:27 -0400] "GET /admin.php HTTP/1.1" 404 1251 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:28 -0400] "GET /css.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:29 -0400] "GET /doc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:29 -0400] "GET /wp_wrong_datlib.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:30 -0400] "GET /v.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:31 -0400] "GET /ups.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:31 -0400] "GET /up.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:32 -0400] "GET /fw.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:32 -0400] "GET /loader/ff.php?pass=shell HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:33 -0400] "GET /local.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:34 -0400] "GET /wp-atom.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:34 -0400] "GET /1index.php?pass=shell HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:35 -0400] "GET /2index.php?pass=shell HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:36 -0400] "GET /3index.php?f=NmRtJOUjAdutReQjscRjKUhleBpzmTyO.txt HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:36 -0400] "GET /wikindex.php?f=NmRtJOUjAdutReQjscRjKUhleBpzmTyO.txt HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:37 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:37 -0400] "GET /wp-conflg.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:38 -0400] "GET /wp-admin/includes/1975.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:39 -0400] "GET /wp-backup-sql-302.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:39 -0400] "GET /wp-includes/wp-class.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:40 -0400] "GET /wp-inlcudes.php?katib HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:40 -0400] "GET /wp-js.php?phpshells HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:41 -0400] "GET /wp-load.php?daksldlkdsadas=1 HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:42 -0400] "GET /sys.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:42 -0400] "GET /0.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:43 -0400] "GET /0byte.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:44 -0400] "GET /0x0.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:44 -0400] "GET /0z.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:45 -0400] "GET /1.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:45 -0400] "GET /13.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:46 -0400] "GET /1877.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:47 -0400] "GET /1975.php?CVE=2022 HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:47 -0400] "GET /1975.php?CVE=2021 HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:48 -0400] "GET /1975.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:48 -0400] "GET /1975Team.php?shell=Dead HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:49 -0400] "GET /403.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:50 -0400] "GET /404.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:50 -0400] "GET /45.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:51 -0400] "GET /4x4.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:51 -0400] "GET /73.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:52 -0400] "GET /a.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:53 -0400] "GET /abc.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:54 -0400] "GET /al.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:54 -0400] "GET /alf.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:55 -0400] "GET /alf4.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:56 -0400] "GET /alfa-ioxi.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:56 -0400] "GET /alfa-shell-v4.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:57 -0400] "GET /alfa.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:58 -0400] "GET /alfakun.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:58 -0400] "GET /alfatesla.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:59 -0400] "GET /alfateslav4.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:08:59 -0400] "GET /alwso.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:00 -0400] "GET /anjay.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:01 -0400] "GET /anon.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:01 -0400] "GET /anons79.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:02 -0400] "GET /base.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:02 -0400] "GET /batm.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:03 -0400] "GET /bj.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:04 -0400] "GET /black.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:04 -0400] "GET /blog/wp-includes/fonts/dev.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:05 -0400] "GET /blog/wp-includes/fonts/iqb.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:06 -0400] "GET /by.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:06 -0400] "GET /byp.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:07 -0400] "GET /bypas.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:07 -0400] "GET /bypass.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:08 -0400] "GET /byps.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:09 -0400] "GET /c.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:09 -0400] "GET /ccaef.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:10 -0400] "GET /chitoge.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:11 -0400] "GET /codeboy1877x.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:12 -0400] "GET /con.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:13 -0400] "GET /con7.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:14 -0400] "GET /con7ext.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:15 -0400] "GET /dbx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:15 -0400] "GET /defau1t.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:16 -0400] "GET /degeselih.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:17 -0400] "GET /dev.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:17 -0400] "GET /docindex.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:18 -0400] "GET /dosya.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:19 -0400] "GET /Dz.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:19 -0400] "GET /e.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:21 -0400] "GET /error.php?phpshells HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:21 -0400] "GET /evil.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:22 -0400] "GET /file.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:22 -0400] "GET /fox.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:23 -0400] "GET /FoxWSO-full.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:24 -0400] "GET /FoxWSO.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:24 -0400] "GET /foxwso.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:25 -0400] "GET /gank.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:26 -0400] "GET /gank.php.PhP HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:27 -0400] "GET /gel4y.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:27 -0400] "GET /gelay.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:28 -0400] "GET /gh.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:28 -0400] "GET /hehe.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:29 -0400] "GET /i.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:30 -0400] "GET /id.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:30 -0400] "GET /ids.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:31 -0400] "GET /idx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:32 -0400] "GET /indoxploit.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:34 -0400] "GET /init.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:34 -0400] "GET /ioxi.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:35 -0400] "GET /iq.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:36 -0400] "GET /iqb.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:36 -0400] "GET /k.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:37 -0400] "GET /kepo.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:38 -0400] "GET /kk.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:39 -0400] "GET /kndw1.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:40 -0400] "GET /la.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:41 -0400] "GET /lnedx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:41 -0400] "GET /lol.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:42 -0400] "GET /lolzk.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:42 -0400] "GET /m.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:43 -0400] "GET /mar.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:44 -0400] "GET /marijuana.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:44 -0400] "GET /mas.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:45 -0400] "GET /mass.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:46 -0400] "GET /mclash.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:46 -0400] "GET /mi.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:47 -0400] "GET /min.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:47 -0400] "GET /mini.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:48 -0400] "GET /minik.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:48 -0400] "GET /minishell.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:49 -0400] "GET /mrjn.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:49 -0400] "GET /n.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:50 -0400] "GET /new-index.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:50 -0400] "GET /ninja.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:51 -0400] "GET /ohayo.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:52 -0400] "GET /old-index.php?daksldlkdsadas=1 HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:52 -0400] "GET /olux.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:53 -0400] "GET /postfs.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:53 -0400] "GET /pref.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:54 -0400] "GET /priv.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:54 -0400] "GET /priv8.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:55 -0400] "GET /qindex.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:55 -0400] "GET /r.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:56 -0400] "GET /r57.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:57 -0400] "GET /rex.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:57 -0400] "GET /root.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:58 -0400] "GET /s.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:59 -0400] "GET /shell.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:09:59 -0400] "GET /shell20211028.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:00 -0400] "GET /shells.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:00 -0400] "GET /sql.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:01 -0400] "GET /srx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:01 -0400] "GET /sym.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:02 -0400] "GET /sym403.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:02 -0400] "GET /t.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:03 -0400] "GET /tes.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:03 -0400] "GET /tesla.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:04 -0400] "GET /teslav.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:05 -0400] "GET /test.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:05 -0400] "GET /tshop.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:06 -0400] "GET /twin.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:07 -0400] "GET /u.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:08 -0400] "GET /upload.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:08 -0400] "GET /uploader.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:09 -0400] "GET /usb.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:10 -0400] "GET /usr.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:11 -0400] "GET /utchiha.phP HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:13 -0400] "GET /v3.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:14 -0400] "GET /v4.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:15 -0400] "GET /vuln.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:16 -0400] "GET /w3llstore.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:16 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:17 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:17 -0400] "GET /wp-content/mu-plugins-old/index.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:18 -0400] "GET /wp-content/themes/twentytwentytwo/index.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:19 -0400] "GET /wp-defaul.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:19 -0400] "GET /wp-includes/fonts/dev.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:20 -0400] "GET /wp-includes/fonts/iq.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:21 -0400] "GET /wp-includes/fonts/iqb.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:22 -0400] "GET /wp-info.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:24 -0400] "GET /wp-mails.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:26 -0400] "GET /wp-one.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:26 -0400] "GET /wp-pluging.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:27 -0400] "GET /wp-plugins.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:28 -0400] "GET /wp-rss.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:28 -0400] "GET /wp-singupp.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:29 -0400] "GET /wp-site.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:30 -0400] "GET /wp-system.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:31 -0400] "GET /wp-title.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:32 -0400] "GET /wp-we.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:33 -0400] "GET /wp.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:34 -0400] "GET /wp/wp-includes/fonts/dev.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:36 -0400] "GET /wp/wp-includes/fonts/iqb.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:36 -0400] "GET /wpindex.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:37 -0400] "GET /ws.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:38 -0400] "GET /wsanon.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:38 -0400] "GET /WSO.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:39 -0400] "GET /wso.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:40 -0400] "GET /wso1.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:41 -0400] "GET /wso1337.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:42 -0400] "GET /wso2.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:42 -0400] "GET /xcv.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:43 -0400] "GET /xidcm.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:43 -0400] "GET /xindex.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:44 -0400] "GET /xleet.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:45 -0400] "GET /xm.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:45 -0400] "GET /xx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:46 -0400] "GET /XxX.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:47 -0400] "GET /xxx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:47 -0400] "GET /y.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:48 -0400] "GET /z.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:49 -0400] "GET /zk.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:49 -0400] "GET /zone.php?phpshell HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:50 -0400] "GET /zx.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:50 -0400] "GET /symlink.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:51 -0400] "GET /c99.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:51 -0400] "GET /ok.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:52 -0400] "GET /2.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:53 -0400] "GET /3.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:53 -0400] "GET /4.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:54 -0400] "GET /6.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:55 -0400] "GET /7.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:55 -0400] "GET /8.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:56 -0400] "GET /9.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:57 -0400] "GET /10.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:57 -0400] "GET /p.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:58 -0400] "GET /q.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:58 -0400] "GET /d.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:59 -0400] "GET /f.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:10:59 -0400] "GET /g.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:00 -0400] "GET /h.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:00 -0400] "GET /j.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:01 -0400] "GET /wp-wso.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:01 -0400] "GET /minimo.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:02 -0400] "GET /V3.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:02 -0400] "GET /V5.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:03 -0400] "GET /www.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:03 -0400] "GET /100.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:04 -0400] "GET /777.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:04 -0400] "GET /xox.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:05 -0400] "GET /new.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:05 -0400] "GET /wi.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:06 -0400] "GET /nee.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:07 -0400] "GET /87.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:07 -0400] "GET /haxor.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:08 -0400] "GET /FoxWSOv1.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:08 -0400] "GET /bb.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:09 -0400] "GET /lf.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:09 -0400] "GET /hello.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:10 -0400] "GET /if.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:11 -0400] "GET /kn.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:13 -0400] "GET /3301.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:13 -0400] "GET /anone.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:14 -0400] "GET /wp-configer.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:14 -0400] "GET /wp-ad.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:15 -0400] "GET /send.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:15 -0400] "GET /.wp-cache.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:16 -0400] "GET /sendmail.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:16 -0400] "GET /rahma.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:17 -0400] "GET /nasgor.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:17 -0400] "GET /alfa123.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:18 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 1242 "-" "python-requests/2.32.3" 185.169.180.28 - - [29/Apr/2025:00:11:18 -0400] "GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 1242 "-" "python-requests/2.32.3" 185.169.180.28 - - [29/Apr/2025:00:11:19 -0400] "GET /api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 1242 "-" "python-requests/2.32.3" 185.169.180.28 - - [29/Apr/2025:00:11:19 -0400] "GET /sites/all/libraries/mailchimp/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 1242 "-" "python-requests/2.32.3" 185.169.180.28 - - [29/Apr/2025:00:11:19 -0400] "GET /modules/autoupgrade/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 403 1242 "-" "python-requests/2.32.3" 185.169.180.28 - - [29/Apr/2025:00:11:20 -0400] "GET /assets/editor/fileman/dev.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:20 -0400] "GET /assets/editor/fileman/index.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:20 -0400] "GET /js/fileman/dev.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:21 -0400] "GET /js/fileman/index.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:21 -0400] "GET /fileman/index.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:22 -0400] "GET /fileman/dev.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:22 -0400] "GET /lib/fileman/index.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:22 -0400] "GET /lib/fileman/dev.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:23 -0400] "GET /admin/fileman/index.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 185.169.180.28 - - [29/Apr/2025:00:11:23 -0400] "GET /admin/fileman/dev.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.143.88.4 - - [29/Apr/2025:01:47:05 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36" 3.101.19.46 - - [29/Apr/2025:01:54:34 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 170.106.180.153 - - [29/Apr/2025:01:56:49 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 103.65.237.89 - - [29/Apr/2025:02:43:51 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:43:52 -0400] "GET /users.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:10 -0400] "GET /classwithtostring.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:14 -0400] "GET /wp-head.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:21 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:23 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:25 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:26 -0400] "GET /wp-header.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:28 -0400] "GET /alfanew.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:32 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:34 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:36 -0400] "GET /cong.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:37 -0400] "GET /options.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:38 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:39 -0400] "GET /wp-content/index.php?x=ooo HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:40 -0400] "GET /wp-admin/options.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [29/Apr/2025:02:44:42 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 194.145.227.125 - - [29/Apr/2025:03:27:23 -0400] "GET / HTTP/1.1" 200 0 "-" "ALittle Client" 103.172.41.200 - - [29/Apr/2025:05:51:47 -0400] "GET /sxallsitemap.xml HTTP/1.1" 200 0 "http://deepakpariyar.com.np/sxallsitemap.xml" "Mozilla/5.0 (Windows NT 6.2; Win64; x64; Trident/7.0; rv:11.0) like Gecko" 196.251.86.177 - - [29/Apr/2025:06:34:54 -0400] "GET / HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:34:57 -0400] "GET /wordpress HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:34:59 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:00 -0400] "GET /wp-admin/install.php HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:02 -0400] "GET /wp HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:03 -0400] "GET /blog HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:05 -0400] "GET /new HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:07 -0400] "GET /old HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:09 -0400] "GET /newsite HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:11 -0400] "GET /test HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:14 -0400] "GET /main HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:18 -0400] "GET /testing HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:27 -0400] "GET /backup HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:28 -0400] "GET /demo HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:28 -0400] "GET /home HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:28 -0400] "GET /tmp HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:28 -0400] "GET /dev HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:29 -0400] "GET /cms HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:29 -0400] "GET /portal HTTP/1.1" 200 0 "-" "-" 196.251.86.177 - - [29/Apr/2025:06:35:29 -0400] "GET /web HTTP/1.1" 200 0 "-" "-" 43.205.98.73 - - [29/Apr/2025:08:10:51 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:52 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:52 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:53 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:53 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:54 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:55 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:55 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:55 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [29/Apr/2025:08:10:56 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.153.122.30 - - [29/Apr/2025:09:39:31 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 93.123.109.101 - - [29/Apr/2025:11:31:46 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/121.0.0.0" 51.222.253.4 - - [29/Apr/2025:14:08:43 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 54.36.149.21 - - [29/Apr/2025:14:08:44 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 185.147.125.18 - - [29/Apr/2025:14:44:52 -0400] "GET / HTTP/1.0" 200 0 "http://deepakpariyar.com.np/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Avast/131.0.0.0" 66.249.79.35 - - [29/Apr/2025:15:32:01 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.79.36 - - [29/Apr/2025:15:32:02 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.95 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.79.36 - - [29/Apr/2025:15:32:10 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.79.36 - - [29/Apr/2025:15:32:12 -0400] "GET /favicon.ico HTTP/1.1" 404 1251 "-" "Googlebot-Image/1.0" 66.249.79.35 - - [29/Apr/2025:15:32:15 -0400] "GET /favicon.ico HTTP/1.1" 404 1251 "-" "Googlebot-Image/1.0" 3.80.61.148 - - [29/Apr/2025:18:18:13 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:13 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:14 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:14 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:15 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:15 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:15 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:16 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:16 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.80.61.148 - - [29/Apr/2025:18:18:17 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.159.140.236 - - [29/Apr/2025:18:20:37 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 66.249.79.37 - - [29/Apr/2025:18:33:40 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.95 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 170.64.137.79 - - [29/Apr/2025:19:17:49 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:17:50 -0400] "GET /wp-includes/ID3/license.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:17:52 -0400] "GET /feed/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:17:53 -0400] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:17:55 -0400] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:17:56 -0400] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:17:58 -0400] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:00 -0400] "GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:02 -0400] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:02 -0400] "GET /2021/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:03 -0400] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:03 -0400] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:04 -0400] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:05 -0400] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 170.64.137.79 - - [29/Apr/2025:19:18:05 -0400] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 54.36.148.82 - - [29/Apr/2025:21:11:07 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 43.156.168.214 - - [30/Apr/2025:02:13:21 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 170.205.30.127 - - [30/Apr/2025:04:29:47 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 43.205.98.73 - - [30/Apr/2025:04:55:42 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:42 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:43 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:43 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:44 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:44 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:44 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:45 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:45 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [30/Apr/2025:04:55:45 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 92.255.57.39 - - [30/Apr/2025:05:18:56 -0400] "GET / HTTP/1.0" 200 0 "http://deepakpariyar.com.np/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Avast/131.0.0.0" 195.20.18.145 - - [30/Apr/2025:05:30:29 -0400] "GET /assets/plugins/jQuery-File-Upload/server/php/index.php?file=tf2rghf.jpg HTTP/1.1" 200 0 "-" "ALittle Client" 52.170.18.30 - - [30/Apr/2025:08:12:24 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:25 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:25 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:26 -0400] "GET /flower.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:26 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:26 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:27 -0400] "GET /meta.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:28 -0400] "GET /index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:29 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:29 -0400] "GET /randkeyword.php HTTP/1.1" 404 1251 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:30 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:30 -0400] "GET /hehe.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:32 -0400] "GET /yindu.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:32 -0400] "GET /wp-admin/class-db.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /baxa1.phP8 HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /baxa1.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /.well-known//index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /libraries/phpmailer//index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /wp-admin/css/colors/blue//1.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /wp-content/plugins//about.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:33 -0400] "GET /wp-content/plugins//index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:34 -0400] "GET /wp-content/plugins/about.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:34 -0400] "GET /wp-content/uploads/BbUMY/flower.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:34 -0400] "GET /wp-includes/ID3//file.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:34 -0400] "GET /wp-includes/Text/Diff/Engine//about.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:34 -0400] "GET /wp-includes/Text/Diff/Engine//index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:34 -0400] "GET /wp-includes/css//index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:34 -0400] "GET /wp-includes/css//xc.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:35 -0400] "GET /wp-includes/images//about.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:35 -0400] "GET /wp-includes/images/crystal//index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:35 -0400] "GET /wp//index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:35 -0400] "GET /user.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:35 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:35 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:36 -0400] "GET /functions.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:37 -0400] "GET /cron.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:38 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:40 -0400] "GET /gecko-new.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:41 -0400] "GET /cookie.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:42 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:42 -0400] "GET /spip.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:42 -0400] "GET /22.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:42 -0400] "GET /room.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:43 -0400] "GET /disagreed.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:44 -0400] "GET /text.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:46 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:47 -0400] "GET /alfa-rex.php7 HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:47 -0400] "GET /feeds.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:48 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:48 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:48 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:48 -0400] "GET /system.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:49 -0400] "GET /xmlrpc.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:49 -0400] "GET /xmlrpc.php0 HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:49 -0400] "GET /colors.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:49 -0400] "GET /updates.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:49 -0400] "GET /alfa-rex1.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:49 -0400] "GET /wp-index.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:50 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:50 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:50 -0400] "GET /alfanew.php7 HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:50 -0400] "GET /locale.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:50 -0400] "GET /wxo.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:51 -0400] "GET /colour.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:51 -0400] "GET /files.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:52 -0400] "GET /install.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:52 -0400] "GET /wp-contentt.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:52 -0400] "GET /config.php7 HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:54 -0400] "GET /config.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:55 -0400] "GET /theme.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:56 -0400] "GET /block-bindings.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:56 -0400] "GET /class_api.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:56 -0400] "GET /inputs.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:56 -0400] "GET /root.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:56 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:56 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:57 -0400] "GET /cloud.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:57 -0400] "GET /configs.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:57 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:57 -0400] "GET /update.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:57 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:57 -0400] "GET /input.php HTTP/1.1" 200 0 "-" "-" 52.170.18.30 - - [30/Apr/2025:08:12:57 -0400] "GET /aaa.php HTTP/1.1" 200 0 "-" "-" 157.90.209.79 - - [30/Apr/2025:08:43:22 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +https://help.seranking.com/en/blex-crawler)" 13.77.80.114 - - [30/Apr/2025:08:51:55 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:56 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:56 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:56 -0400] "GET /flower.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:56 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:56 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:56 -0400] "GET /meta.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:56 -0400] "GET /index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:57 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:57 -0400] "GET /randkeyword.php HTTP/1.1" 404 1251 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:57 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:57 -0400] "GET /hehe.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:57 -0400] "GET /yindu.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:57 -0400] "GET /wp-admin/class-db.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:57 -0400] "GET /baxa1.phP8 HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /baxa1.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /.well-known//index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /libraries/phpmailer//index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /wp-admin/css/colors/blue//1.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /wp-content/plugins//about.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /wp-content/plugins//index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:58 -0400] "GET /wp-content/plugins/about.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:59 -0400] "GET /wp-content/uploads/BbUMY/flower.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:59 -0400] "GET /wp-includes/ID3//file.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:59 -0400] "GET /wp-includes/Text/Diff/Engine//about.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:59 -0400] "GET /wp-includes/Text/Diff/Engine//index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:51:59 -0400] "GET /wp-includes/css//index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:00 -0400] "GET /wp-includes/css//xc.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:00 -0400] "GET /wp-includes/images//about.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:00 -0400] "GET /wp-includes/images/crystal//index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:01 -0400] "GET /wp//index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:01 -0400] "GET /user.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:01 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:01 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:01 -0400] "GET /functions.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:01 -0400] "GET /cron.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:02 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:02 -0400] "GET /gecko-new.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:02 -0400] "GET /cookie.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:02 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:03 -0400] "GET /spip.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:03 -0400] "GET /22.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:04 -0400] "GET /room.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:04 -0400] "GET /disagreed.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:04 -0400] "GET /text.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:04 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:04 -0400] "GET /alfa-rex.php7 HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:04 -0400] "GET /feeds.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:04 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:05 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:05 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:05 -0400] "GET /system.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:05 -0400] "GET /xmlrpc.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:05 -0400] "GET /xmlrpc.php0 HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:05 -0400] "GET /colors.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:05 -0400] "GET /updates.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:06 -0400] "GET /alfa-rex1.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:06 -0400] "GET /wp-index.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:06 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:06 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:06 -0400] "GET /alfanew.php7 HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:06 -0400] "GET /locale.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:07 -0400] "GET /wxo.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:07 -0400] "GET /colour.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:07 -0400] "GET /files.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:07 -0400] "GET /install.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:07 -0400] "GET /wp-contentt.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:07 -0400] "GET /config.php7 HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:07 -0400] "GET /config.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /theme.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /block-bindings.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /class_api.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /inputs.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /root.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /cloud.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:08 -0400] "GET /configs.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:09 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:09 -0400] "GET /update.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:09 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:09 -0400] "GET /input.php HTTP/1.1" 200 0 "-" "-" 13.77.80.114 - - [30/Apr/2025:08:52:09 -0400] "GET /aaa.php HTTP/1.1" 200 0 "-" "-" 54.36.148.236 - - [30/Apr/2025:09:55:04 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 54.36.148.207 - - [30/Apr/2025:09:55:05 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 43.165.67.57 - - [30/Apr/2025:10:31:31 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 34.202.88.37 - - [30/Apr/2025:10:35:51 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot) Chrome/119.0.6045.214 Safari/537.36" 34.202.88.37 - - [30/Apr/2025:10:35:52 -0400] "GET /readme.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot) Chrome/119.0.6045.214 Safari/537.36" 196.251.116.108 - - [30/Apr/2025:12:37:42 -0400] "GET /wp-content/themes/hideo/network.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 196.251.116.108 - - [30/Apr/2025:12:37:52 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 196.251.116.108 - - [30/Apr/2025:12:38:04 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 18.144.26.44 - - [30/Apr/2025:13:27:43 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 170.205.30.127 - - [30/Apr/2025:14:13:40 -0400] "GET /siteheads.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 54.36.149.54 - - [30/Apr/2025:14:17:03 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 85.208.96.204 - - [30/Apr/2025:15:10:28 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; SemrushBot/7~bl; +http://www.semrush.com/bot.html)" 85.208.96.210 - - [30/Apr/2025:15:10:28 -0400] "GET /readme.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; SemrushBot/7~bl; +http://www.semrush.com/bot.html)" 185.191.171.16 - - [30/Apr/2025:15:10:30 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; SemrushBot/7~bl; +http://www.semrush.com/bot.html)" 185.191.171.6 - - [30/Apr/2025:15:10:32 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; SemrushBot/7~bl; +http://www.semrush.com/bot.html)" 107.151.248.52 - - [30/Apr/2025:15:11:26 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:29 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:29 -0400] "GET /index/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:29 -0400] "GET /.ll/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:29 -0400] "GET /.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:30 -0400] "GET /wp-content/plugins/async-upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:30 -0400] "GET /new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:30 -0400] "GET /pages.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:30 -0400] "GET /wp-editor.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:30 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:31 -0400] "GET /ge.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:31 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:31 -0400] "GET /templatesdex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:31 -0400] "GET /click.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:32 -0400] "GET /.lu/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:32 -0400] "GET /mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:32 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:32 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:04:32 -0400] "GET /wp-mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:33 -0400] "GET /randkeyword.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:33 -0400] "GET /wp-content/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:04:33 -0400] "GET /lock.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:33 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:33 -0400] "GET /ws.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:34 -0400] "GET /x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:34 -0400] "GET /login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:34 -0400] "GET /eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:34 -0400] "GET /wp-admin/images/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:34 -0400] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:04:35 -0400] "GET /test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:35 -0400] "GET /wp-admin/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:35 -0400] "GET /cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:35 -0400] "GET /baxa1.phP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:36 -0400] "GET /wp-admin/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:36 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:36 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:36 -0400] "GET /themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:36 -0400] "GET /wp-includes/ID3/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:04:37 -0400] "GET /wp-includes/Text/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:37 -0400] "GET /wp-admin/network/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:37 -0400] "GET /rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:04:37 -0400] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:04:37 -0400] "GET /wp-admin/js/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:04:38 -0400] "GET /.well-known/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:38 -0400] "GET /chosen.phppload HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:04:38 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:04:38 -0400] "GET /sxx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:38 -0400] "GET /wp-admin/maint/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:39 -0400] "GET /baxa1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:39 -0400] "GET /classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:39 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:39 -0400] "GET /about/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:39 -0400] "GET /user/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:04:40 -0400] "GET /wp-content/themes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:40 -0400] "GET /wp-includes/css/dist/niil.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:40 -0400] "GET /moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:40 -0400] "GET /wp-admin/css/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:41 -0400] "GET /wp-admin/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:41 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:41 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:04:41 -0400] "GET /pgs.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:04:41 -0400] "GET /shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:04:42 -0400] "GET /mjq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:42 -0400] "GET /content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:04:42 -0400] "GET /readme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:42 -0400] "GET /litespeed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:04:43 -0400] "GET /bypass.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:43 -0400] "GET /.qiodeme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:44 -0400] "GET /ad.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:44 -0400] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:44 -0400] "GET /wp-content/upgrade/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:45 -0400] "GET /df.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:45 -0400] "GET /jindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:45 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:45 -0400] "GET /Files/Mo0n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:04:45 -0400] "GET /wp-content/mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:46 -0400] "GET /bv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:04:46 -0400] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:46 -0400] "GET /403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:46 -0400] "GET /bk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:47 -0400] "GET /wp-includes/fonts/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:47 -0400] "GET /wp-content/languages/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:47 -0400] "GET /wp-atom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:47 -0400] "GET /hj.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:04:48 -0400] "GET /sym.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:48 -0400] "GET /lp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:48 -0400] "GET /Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:48 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:04:49 -0400] "GET /yt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:04:49 -0400] "GET /wp-conflg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:49 -0400] "GET /x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:49 -0400] "GET /hehehehe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:49 -0400] "GET /.github/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:50 -0400] "GET /default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:04:50 -0400] "GET /bn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:04:50 -0400] "GET /wordpress/update/wpupex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:04:50 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:50 -0400] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:51 -0400] "GET /ini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:51 -0400] "GET /wp-includes/rest-api/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:51 -0400] "GET /shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:51 -0400] "GET /aa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:04:52 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:52 -0400] "GET /wp-admin/includes/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:52 -0400] "GET /wp-includes/ID3/about.php/wp-content/x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:52 -0400] "GET /wpn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:52 -0400] "GET /wp-admin/css/colors/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:04:53 -0400] "GET /wp-admin/js/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:53 -0400] "GET /wp-includes/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:53 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:04:53 -0400] "GET /wp-content/themes/xc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:54 -0400] "GET /baxa1.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:04:54 -0400] "GET /av.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:54 -0400] "GET /network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:04:54 -0400] "GET /wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:04:54 -0400] "GET /wp-content/upgrade/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:04:55 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:55 -0400] "GET /wp-includes/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:04:55 -0400] "GET /wp-content/Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:55 -0400] "GET /vv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:55 -0400] "GET /wp-includes/style-engine/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:56 -0400] "GET /wp-user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:04:56 -0400] "GET /wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:56 -0400] "GET /.well-known/acme-challenge/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:56 -0400] "GET /assets/css/403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:56 -0400] "GET /error.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:57 -0400] "GET /ff.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:04:57 -0400] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:57 -0400] "GET /wp-content/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:04:57 -0400] "GET /credits.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:04:57 -0400] "GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:58 -0400] "GET /wp-includes/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:04:58 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:58 -0400] "GET /wp-includes/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:04:58 -0400] "GET /wp-admin/maint/flower.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:04:58 -0400] "GET /wp-includes/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:58 -0400] "GET /wp-tinymce.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:59 -0400] "GET /wp-links.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:04:59 -0400] "GET /css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:59 -0400] "GET /retu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:04:59 -0400] "GET /aw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:04:59 -0400] "GET /lv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:04:59 -0400] "GET /wp-includes/block-patterns/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:00 -0400] "GET /dr.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:00 -0400] "GET /randkeyword.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:00 -0400] "GET /wp-admin/Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:00 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:05:00 -0400] "GET /ay.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:00 -0400] "GET /wordpress/wp-admin/wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:01 -0400] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:01 -0400] "GET /wp-content/plugins/ioptimization/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:01 -0400] "GET /wp-content/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:01 -0400] "GET /wp-admin/network/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:01 -0400] "GET /wp-admin/defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:02 -0400] "GET /mini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:02 -0400] "GET /yy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:02 -0400] "GET /.well-known/pki-validation/eew.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:02 -0400] "GET /wp-includes/IXR/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:02 -0400] "GET /log.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:03 -0400] "GET /tr.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:03 -0400] "GET /wp-content/themes/pridmag/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:03 -0400] "GET /wp-includes/css/dist/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:03 -0400] "GET /byp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:04 -0400] "GET /aq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:04 -0400] "GET /yu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:04 -0400] "GET /gt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:04 -0400] "GET /duck.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:05 -0400] "GET /op.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:05 -0400] "GET /l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:05 -0400] "GET /doc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:05 -0400] "GET /update/wpupex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:05 -0400] "GET /m.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:06 -0400] "GET /2index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:06 -0400] "GET /wp-content/themes/sky-pro/js.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:06 -0400] "GET /ayk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:05:06 -0400] "GET /alfanew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:06 -0400] "GET /wp-includes/wp-class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:05:07 -0400] "GET /er.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:07 -0400] "GET /wp-includes/PHPMailer/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:07 -0400] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:07 -0400] "GET /ssa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:07 -0400] "GET /.well-known/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:08 -0400] "GET /hardenX.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:08 -0400] "GET /.qiofetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:08 -0400] "GET /function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:08 -0400] "GET /wp-content/x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:08 -0400] "GET /wp-admin/maint/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:08 -0400] "GET /cc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:09 -0400] "GET /images/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:09 -0400] "GET /new2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:09 -0400] "GET /class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:09 -0400] "GET /wp-content/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:09 -0400] "GET /ok.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:05:10 -0400] "GET /wp-content/mu-plugins/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:10 -0400] "GET /backup/sid.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:10 -0400] "GET /ki.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:10 -0400] "GET /wp-includes/assets/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:05:10 -0400] "GET /.well-known/acme-challenge/upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:10 -0400] "GET /about/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:11 -0400] "GET /wp-admin/images/wp-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:11 -0400] "GET /wp-content/plugins/cp-pro/js.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:11 -0400] "GET /wp-includes/css/dist/components/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:11 -0400] "GET /wp-includes/customize/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:05:11 -0400] "GET /tt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:12 -0400] "GET /uu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:12 -0400] "GET /wp-admin/x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:12 -0400] "GET /.well-known/pki-validation/xmrlpc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:05:12 -0400] "GET /dir.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:12 -0400] "GET /wp-admin/options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:13 -0400] "GET /.well-known/acme-challenge/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:13 -0400] "GET /xx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:13 -0400] "GET /css/xa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:13 -0400] "GET /sk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:13 -0400] "GET /wordpress/wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:05:13 -0400] "GET /item.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:14 -0400] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:05:14 -0400] "GET /wordpress/wp-includes/wp-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:14 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:14 -0400] "GET /.well-known/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:14 -0400] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:14 -0400] "GET /bgf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:15 -0400] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:05:15 -0400] "GET /an.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:15 -0400] "GET /wp-includes/pomo/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:15 -0400] "GET /wp-content/plugins/core/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:15 -0400] "GET /test.php/wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:16 -0400] "GET /ova.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:16 -0400] "GET /plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:16 -0400] "GET /wp-content/themes/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:16 -0400] "GET /worksec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:16 -0400] "GET /options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:17 -0400] "GET /wp-blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:17 -0400] "GET /wp-info.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:17 -0400] "GET /la.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:17 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:17 -0400] "GET /wp-includes/fonts/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:17 -0400] "GET /wp-content/plugins/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:18 -0400] "GET /wp-includes/rest-api/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:18 -0400] "GET /as.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:05:18 -0400] "GET /images.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:05:18 -0400] "GET /up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:05:18 -0400] "GET /index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:19 -0400] "GET /wp-content/plugins/wp-help/mini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:19 -0400] "GET /indeks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:19 -0400] "GET /wp-content/plugins/seoo/xynz1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:19 -0400] "GET /wp-content/tmpls.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:19 -0400] "GET /wp-content/themes/travel/issue.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:19 -0400] "GET /wp-admin/js/widgets/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:20 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/udd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:20 -0400] "GET /wp-includes/Requests/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:20 -0400] "GET /wp-includes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:20 -0400] "GET /retu11.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:20 -0400] "GET /back.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:20 -0400] "GET /wp-content/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:21 -0400] "GET /wp-head.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:21 -0400] "GET /images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:21 -0400] "GET /wp-content/shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:21 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:21 -0400] "GET /system_log.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:22 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:22 -0400] "GET /wp-admin/css/colors/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:22 -0400] "GET /rt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:22 -0400] "GET /atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:22 -0400] "GET /wp-admin/maint/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:05:22 -0400] "GET /.well-known/acme-challenge/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:23 -0400] "GET /admin/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:23 -0400] "GET /wp-content/themes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:23 -0400] "GET /wp-admin/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:23 -0400] "GET /.well-known/pki-validation/.qiodetme.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:23 -0400] "GET /makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:23 -0400] "GET /hjk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:24 -0400] "GET /wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:05:24 -0400] "GET /ac.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:24 -0400] "GET /w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:24 -0400] "GET /inc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:24 -0400] "GET /wp-includes/js/plupload/jquery.Jcrop.min.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:25 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:25 -0400] "GET /wp-admin/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:25 -0400] "GET /wp-admin/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:25 -0400] "GET /wp-admin/css/about.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:25 -0400] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:05:25 -0400] "GET /install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:26 -0400] "GET /wp-content/plugins/seox/randkeyword.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:26 -0400] "GET /wp-content/plugins/pwnd/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:26 -0400] "GET /index/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:26 -0400] "GET /aj.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:26 -0400] "GET /wp-header.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:26 -0400] "GET /wp-admin/includes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:27 -0400] "GET /hui.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:27 -0400] "GET /oo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:27 -0400] "GET /data.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:27 -0400] "GET /wp-includes/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:27 -0400] "GET /wp-admin/maint/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:28 -0400] "GET /randkeyword.PhP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:28 -0400] "GET /ss.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:28 -0400] "GET /xml.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:28 -0400] "GET /wp-admin/images/lufix.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:28 -0400] "GET /customize.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:29 -0400] "GET /a.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:29 -0400] "GET /wp-content/item.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:29 -0400] "GET /ui.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:29 -0400] "GET /b.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:29 -0400] "GET /wp-includes/css/dist/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:05:30 -0400] "GET /images/class-config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:30 -0400] "GET /as/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:30 -0400] "GET /kl.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:30 -0400] "GET /wp-admin/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:30 -0400] "GET /wsoyanzfv3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:30 -0400] "GET /wp-admin/Files/Mo0n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:31 -0400] "GET /index/gu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:31 -0400] "GET /lk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:31 -0400] "GET /mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:31 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:31 -0400] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:31 -0400] "GET /update/wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:32 -0400] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:32 -0400] "GET /ioxi002.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:32 -0400] "GET /wp-content/themes/aahana/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:05:32 -0400] "GET /wp-includes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:32 -0400] "GET /mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:33 -0400] "GET /wp-content/themes/seotheme/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:33 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:33 -0400] "GET /wp-trackback.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:33 -0400] "GET /cgi-bin/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:33 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:33 -0400] "GET /wp-includes/wp-atom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:34 -0400] "GET /.well-known/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:34 -0400] "GET /fm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:34 -0400] "GET /wp-cron.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:34 -0400] "GET /sidwsi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:05:34 -0400] "GET /wpupp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:35 -0400] "GET /upmdxpcz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:35 -0400] "GET /wp-admin/includes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:35 -0400] "GET /blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:05:35 -0400] "GET /wp-admin/css/colors/coffee/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:35 -0400] "GET /yanz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:35 -0400] "GET /inputs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:36 -0400] "GET /wp-includes/Requests/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:36 -0400] "GET /cgi-bin/index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:36 -0400] "GET /wp-includes/makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:36 -0400] "GET /wp-includes/block-supports/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:36 -0400] "GET /wp-includes/css/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:37 -0400] "GET /xpfkcrpp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:37 -0400] "GET /wp-content/uploads/2023/a22.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:05:37 -0400] "GET /alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:37 -0400] "GET /wp-includes/images/smilies/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:37 -0400] "GET /wordpress/update/wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:37 -0400] "GET /wp-admin/user/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:38 -0400] "GET /l.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:38 -0400] "GET /wp-admin/images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:38 -0400] "GET /jp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:38 -0400] "GET /.well-known/acme-challenge/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:38 -0400] "GET /wp-admin/maint/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:39 -0400] "GET /wp-admin/css/colors/coffee/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:39 -0400] "GET /wp-set.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:39 -0400] "GET /link.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:39 -0400] "GET /.well-known/pki-validation/cloud.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:05:39 -0400] "GET /.well-known/acme-challenge/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:40 -0400] "GET /worm0.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:40 -0400] "GET /admin/upload/css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:40 -0400] "GET /web.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:40 -0400] "GET /bak.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:40 -0400] "GET /wp-content/plugins/azra-tn/wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:41 -0400] "GET /img/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:41 -0400] "GET /license.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:41 -0400] "GET /wp-signup.php?Fox=sQFLZ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:41 -0400] "GET /wp-content/themes/alera/alpha.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:41 -0400] "GET /13.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:42 -0400] "GET /wp-content/plugins/work-list/lang.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:42 -0400] "GET /upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:05:42 -0400] "GET /uzkeerfe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:42 -0400] "GET /fw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:42 -0400] "GET /contact.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:05:42 -0400] "GET /wp-content/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:43 -0400] "GET /wp-includes/blocks/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:43 -0400] "GET /ynz.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:43 -0400] "GET /cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:05:43 -0400] "GET /ymhrwpmq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:43 -0400] "GET /contents.php/lv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:44 -0400] "GET /yjsmnati.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:44 -0400] "GET /cgi-bin/cloud.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:44 -0400] "GET /wp-links-opml.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:44 -0400] "GET /index.php?x=ooo HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:44 -0400] "GET /wp-content/banners/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:44 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:45 -0400] "GET /wp-admin/network/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:45 -0400] "GET /wp-admin/images/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:45 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:45 -0400] "GET /hehe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:05:45 -0400] "GET /wp-content/plugins/erin/pgs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:46 -0400] "GET /wp-content/plugins/linkpreview/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:46 -0400] "GET /css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:46 -0400] "GET /wp-includes/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:05:46 -0400] "GET /wp-content/plugins/simple/simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:46 -0400] "GET /lufix.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:47 -0400] "GET /about.php?525 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:47 -0400] "GET /wp-admin/images/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:47 -0400] "GET /wp-content/plugins/seoplugins/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:05:47 -0400] "GET /tinyfilemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:47 -0400] "GET /wp-admin/images/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:47 -0400] "GET /cgi-bin/file.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:48 -0400] "GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:48 -0400] "GET /wp-admin/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:48 -0400] "GET /files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:05:48 -0400] "GET /ms.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:48 -0400] "GET /insert_activity_db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:48 -0400] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:05:49 -0400] "GET /.well-known/acme-challenge/makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:49 -0400] "GET /update/gely.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:49 -0400] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:49 -0400] "GET /text.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:05:49 -0400] "GET /.well-known/pki-validation/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:50 -0400] "GET /wp-includes/customize/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:50 -0400] "GET /saka.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:05:50 -0400] "GET /.well-known/acme-challenge/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:50 -0400] "GET /1index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:50 -0400] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:50 -0400] "GET /wp-admin/user/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:51 -0400] "GET /crack.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:51 -0400] "GET /.well-known/acme-challenge/mariju.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:51 -0400] "GET /bb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:51 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:52 -0400] "GET /wp-includes/js/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:05:52 -0400] "GET /wp-admin/admin-ajax.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:52 -0400] "GET /components/com_joomdle/assets/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:52 -0400] "GET /cmd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:52 -0400] "GET /upload_shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:52 -0400] "GET /var/www/html/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:53 -0400] "GET /uploads/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:53 -0400] "GET /files/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:53 -0400] "GET /webdb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:53 -0400] "GET /xp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:05:53 -0400] "GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:54 -0400] "GET /bs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:05:54 -0400] "GET /update-core.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:54 -0400] "GET /wp-includes/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:54 -0400] "GET /wp-includes/blocks/site-title/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:54 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:54 -0400] "GET /.well-known/acme-challenge/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:05:55 -0400] "GET /.well-known/pki-validation/2index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:55 -0400] "GET /assets/images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:55 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:55 -0400] "GET /adminer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:55 -0400] "GET /wp-content/plugins/ioxi/alfa-ioxi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:05:55 -0400] "GET /wp-admin/css/colors/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:05:56 -0400] "GET /wp-admin/user/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:05:56 -0400] "GET /htaccess.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:05:56 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:56 -0400] "GET /.well-known/acme-challenge/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:05:56 -0400] "GET /cgi-bin/cgi-bin/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:57 -0400] "GET /cgi-bin/radio.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:05:57 -0400] "GET /wp-ncludes/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:05:57 -0400] "GET /.qiodetme.php/goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:05:57 -0400] "GET /wp-content/themes/hello-element/footer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:57 -0400] "GET /wp-admin/maint/min.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:58 -0400] "GET /wp-admin/includes/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:58 -0400] "GET /wp-admin/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:58 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:05:58 -0400] "GET /wp-content/uploads/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:58 -0400] "GET /wp-includes/wp-widgets.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:58 -0400] "GET /.well-known/pki-validation/sxx.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:59 -0400] "GET /packed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:05:59 -0400] "GET /max.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:59 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:05:59 -0400] "GET /n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:05:59 -0400] "GET /saka.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:00 -0400] "GET /wp-content/uploads/2023/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:00 -0400] "GET /marijuana.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:00 -0400] "GET /.well-known/acme-challenge/edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:06:00 -0400] "GET /wp-content/plugins/Core-EconX/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:00 -0400] "GET /wp-includes/certificates/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:00 -0400] "GET /.well-known/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:01 -0400] "GET /wp-content/uploads/GzyYU.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:01 -0400] "GET /wp-includes/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:01 -0400] "GET /wp-admin/js/widgets/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:01 -0400] "GET /wp-admin/network/gzak2w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:01 -0400] "GET /components/com_jea/views/form/tmpl/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:01 -0400] "GET /test/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:02 -0400] "GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:02 -0400] "GET /st.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:02 -0400] "GET /assets/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:02 -0400] "GET /wp-add.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:03 -0400] "GET /wp-content/uploads/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:03 -0400] "GET /0x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:03 -0400] "GET /.well-known/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:06:03 -0400] "GET /wp-admin/images/sidebarh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:03 -0400] "GET /nav-menus.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:04 -0400] "GET /wp-content/plugins/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:04 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:04 -0400] "GET /cgi-bin/plugins.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:06:04 -0400] "GET /worksec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:04 -0400] "GET /.well-known/pki-validation/index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:04 -0400] "GET /lock360.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:05 -0400] "GET /wp-admin/user/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:06:05 -0400] "GET /wp-content/plugins/Core-Econ/upH.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:05 -0400] "GET /pegi.PhP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:05 -0400] "GET /cgi-bin/mariju.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:06:06 -0400] "GET /wp-includes/blocks/button/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:06 -0400] "GET /wp-content/plugins/apikey/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:06:06 -0400] "GET /css/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:06 -0400] "GET /wp-content/uploads/2022/bidlbdgp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:06 -0400] "GET /wp-content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:07 -0400] "GET /components/lig.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:07 -0400] "GET /wp-content/updates.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:07 -0400] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:06:07 -0400] "GET /cgi-bin/admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:07 -0400] "GET /.well-known/acme-challenge/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:08 -0400] "GET /network.php4 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:08 -0400] "GET /wp-admin/network/class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:08 -0400] "GET /.well-known/pki-validation/webdb.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:06:08 -0400] "GET /delpaths.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:08 -0400] "GET /wp-admin/alfa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:09 -0400] "GET /wp-admin/css/colors/coffee/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:09 -0400] "GET /.well-known/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:09 -0400] "GET /cgi-bin/moon.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:09 -0400] "GET /wp-includes/block-supports/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:09 -0400] "GET /users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:10 -0400] "GET /.well-known/pki-validation/file.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:10 -0400] "GET /init.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:10 -0400] "GET /wp-includes/css/options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:10 -0400] "GET /wp-includes/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:10 -0400] "GET /wp-admin/images/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:11 -0400] "GET /wp-includes/SimplePie/Cache/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:11 -0400] "GET /widgets.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:11 -0400] "GET /cgi-bin/xdrwxeax.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:11 -0400] "GET /wp-includes/mani.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:12 -0400] "GET /.well-known/pki-validation/ssl.php?xsec=blocker HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:12 -0400] "GET /xl2023.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:12 -0400] "GET /.well-known/acme-challenge/license.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:12 -0400] "GET /wp-admin/network/index.php4 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:13 -0400] "GET /ova.php4https:/worldbdsm.net/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:06:13 -0400] "GET /css/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:06:13 -0400] "GET /.well-known/pki-validation/wp-sigunq.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:13 -0400] "GET /cjfuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:13 -0400] "GET /.well-known/functions.schedules.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:14 -0400] "GET /wzy.php?action=door123 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:06:14 -0400] "GET /.well-known/acme-challenge/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:14 -0400] "GET /.well-known/acme-challenge/doc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:15 -0400] "GET /wp-includes/packed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:15 -0400] "GET /product.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:15 -0400] "GET /.well-known/acme-challenge/blurbs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:15 -0400] "GET /wp-includes/certificates/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:16 -0400] "GET /wp-content/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:16 -0400] "GET /.well-known/pki-validation/doc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:16 -0400] "GET /checkbox.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:16 -0400] "GET /wp-includes/SimplePie/lig.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:17 -0400] "GET /.well-known/acme-challenge/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:17 -0400] "GET /wp-files.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:17 -0400] "GET /.well-known/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:17 -0400] "GET /black.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:18 -0400] "GET /wp-includes/Requests/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:18 -0400] "GET /wp-includes/mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:18 -0400] "GET /wp-load.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:18 -0400] "GET /buy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:19 -0400] "GET /.well-known/pki-validation/classwithtostring.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:19 -0400] "GET /word.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:19 -0400] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:06:19 -0400] "GET /wp-content/plugins/sid/sidwso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:19 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/fonts/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:20 -0400] "GET /wp-includes/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:20 -0400] "GET /wp-admin/css/colors/blue/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:20 -0400] "GET /.well-known/pki-validation/scripts.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:20 -0400] "GET /assets/images/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:21 -0400] "GET /wp-includes/fonts/parx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:21 -0400] "GET /gecko.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:21 -0400] "GET /cgi-bin/install.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:21 -0400] "GET /wp-includes/Text/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:21 -0400] "GET /wp-includes/block-patterns/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:22 -0400] "GET /modules/mod_footer/tmpl/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:22 -0400] "GET /wp-admin/wp-configs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:22 -0400] "GET /f0x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:22 -0400] "GET /templates/cassiopeia/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:22 -0400] "GET /.well-known/acme-challenge/iR7SzrsOUEP.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:23 -0400] "GET /wp-content/uploads/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:23 -0400] "GET /.well-known/acme-challenge/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:23 -0400] "GET /wp-includes/fonts/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:23 -0400] "GET /wp-includes/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:23 -0400] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:24 -0400] "GET /sh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:06:24 -0400] "GET /wp-admin/images/thumbs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:24 -0400] "GET /db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:24 -0400] "GET /wp-content/plugins/elementor/wp-wyrvg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:24 -0400] "GET /wp-includes/css/dist/editor/fxp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:24 -0400] "GET /wp-admin/network/back.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:25 -0400] "GET /wp-admin/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:25 -0400] "GET /wp-includes/customize/lmfi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:25 -0400] "GET /version.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:25 -0400] "GET /wp-content HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:26 -0400] "GET /wp-admin/wp-admin/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:06:26 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:26 -0400] "GET /wp-includes/IXR/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:26 -0400] "GET /wp-admin/css/colors/blue/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:27 -0400] "GET /wp-admin/images/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:06:27 -0400] "GET /wp-content/themes/pridmag/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:27 -0400] "GET /wp-admin/css/colors/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:27 -0400] "GET /.well-known/acme-challenge/aboudt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:27 -0400] "GET /wp-includes/certificates/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:28 -0400] "GET /mm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:28 -0400] "GET /wp-includes/css/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:06:28 -0400] "GET /indeex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:28 -0400] "GET /sys.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:28 -0400] "GET /wp-includes/customize/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:06:29 -0400] "GET /wp-includes/certificates/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:29 -0400] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:29 -0400] "GET /wp-admin/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:29 -0400] "GET /templates/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:29 -0400] "GET /cgi-bin/users.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:29 -0400] "GET /wp-admin/network/ayk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:30 -0400] "GET /.well-known/pki-validation/baja.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:30 -0400] "GET /sys.phhttp:/marykelledy.com/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:30 -0400] "GET /.well-known/pki-validation/radio.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:30 -0400] "GET /wp-admin/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:30 -0400] "GET /.well-known/zaza.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:06:30 -0400] "GET /.well-known/acme-challenge/shimo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:31 -0400] "GET /wp-includes/images/smilies/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:31 -0400] "GET /max.phhttp:/sushiavenue.fr/alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:31 -0400] "GET /.well-known/webdb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:31 -0400] "GET /edit-tags.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:31 -0400] "GET /wp-includes/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:32 -0400] "GET /wp-l0gin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:32 -0400] "GET /wp-content/plugins/clara/clara.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:06:32 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.phpcom.au/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:32 -0400] "GET /main.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:06:32 -0400] "GET /wp-admin/css/colors/modern/git.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:32 -0400] "GET /wp-includes/wp-includes/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:33 -0400] "GET /wp-includes/images/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:33 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:33 -0400] "GET /wp-content/uploads/2023/user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:33 -0400] "GET /.well-known/pki-validation/iR7SzrsOUEP.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:33 -0400] "GET /wp-content/upgrade/ss.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:33 -0400] "GET /wp-includes/SimplePie/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:34 -0400] "GET /wp-includes/shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:34 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:34 -0400] "GET /pgs.phP HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:34 -0400] "GET /cgi-bin/iR7SzrsOUEP.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:34 -0400] "GET /wp-content/themes/tflow/goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:34 -0400] "GET /wordpress/wp-content/uploads/_input_3_css.phtml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:06:35 -0400] "GET /.well-known/bs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:35 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:35 -0400] "GET /wp-includes/images/file1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:35 -0400] "GET /wp-activate.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:35 -0400] "GET /wp-includes/ID3/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:36 -0400] "GET /wp-admin/js/widgets/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:36 -0400] "GET /wp-includes/css/dist/wp-l0gin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:36 -0400] "GET /fox.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:06:36 -0400] "GET /wp-admin/images/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:36 -0400] "GET /ALFA_DATA/alfacgiapi/wp-conflg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:37 -0400] "GET /.well-known/pki-validation/flower.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:37 -0400] "GET /class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:37 -0400] "GET /wp-blog-header.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:37 -0400] "GET /wp-admin/images/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:37 -0400] "GET /.well-known/pki-validation/wrapper.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:37 -0400] "GET /wp-content/uploads/lmfi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:38 -0400] "GET /index2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:06:38 -0400] "GET /.well-known/pki-validation/web.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:38 -0400] "GET /.well-known/pki-validation/index1.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:38 -0400] "GET /nf_tracking.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:38 -0400] "GET /woh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:06:38 -0400] "GET /wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:39 -0400] "GET /bala.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:39 -0400] "GET /tiny.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:39 -0400] "GET /wpkey.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:39 -0400] "GET /goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.115 - - [30/Apr/2025:21:06:39 -0400] "GET /masterjob/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:39 -0400] "GET /crop.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:40 -0400] "GET /webshell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:40 -0400] "GET /filemanager/dialog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:40 -0400] "GET /you.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:40 -0400] "GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:40 -0400] "GET /wp-content/uploads/2023/05/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:40 -0400] "GET /.well-known/fierzashell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:41 -0400] "GET /wp-content/themes/wp-classic/inc/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:41 -0400] "GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:41 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:41 -0400] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:41 -0400] "GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:41 -0400] "GET /ioxi01.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:42 -0400] "GET /tinyfilemanager/tinyfilemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:42 -0400] "GET /ty.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:42 -0400] "GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:42 -0400] "GET /profile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:42 -0400] "GET /wp-content/plugins/background-image-cropper/ups.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:43 -0400] "GET /sts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.115 - - [30/Apr/2025:21:06:43 -0400] "GET /include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:43 -0400] "GET /leaf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:43 -0400] "GET /wp-content/db-cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:06:43 -0400] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.115 - - [30/Apr/2025:21:06:43 -0400] "GET /yrlgvupk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:06:44 -0400] "GET /wp-content/themes/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:06:44 -0400] "GET /filemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.115 - - [30/Apr/2025:21:06:44 -0400] "GET /wp-content/plugins/TOPXOH/wDR.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:44 -0400] "GET /wp-file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:44 -0400] "GET /ova-wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:44 -0400] "GET /fm1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:45 -0400] "GET /form.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:45 -0400] "GET /wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:45 -0400] "GET /wp-2018.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:45 -0400] "GET /siti.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:45 -0400] "GET /abe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:46 -0400] "GET /insoamv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:46 -0400] "GET /wp-p.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:46 -0400] "GET /wp-admin/includes/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:46 -0400] "GET /css/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:46 -0400] "GET /wp-admin/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:46 -0400] "GET /wp-content/themes/astra/inc/ki1k.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:47 -0400] "GET /wp-admin/maint/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:47 -0400] "GET /wp-content/plugins/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:47 -0400] "GET /.tmb/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:06:47 -0400] "GET /.well-known/alfanew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:47 -0400] "GET /wp-admin/css/colors/coffee/lofter.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:47 -0400] "GET /wp-includes/Requests/Auth/images.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:48 -0400] "GET /wp-content/themes/seotheme/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:48 -0400] "GET /.tmb/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:48 -0400] "GET /wp-includes/theme-compat/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:48 -0400] "GET /wp-admin/network/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:48 -0400] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:49 -0400] "GET /wp-includes/certificates/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:49 -0400] "GET /bless.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:49 -0400] "GET /wordpress/update/bibil.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:49 -0400] "GET /avaa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:49 -0400] "GET /wp-content/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:49 -0400] "GET /update/403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:50 -0400] "GET /wp-content/plugins/seooyanz/wsoyanzv2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:50 -0400] "GET /about/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.115 - - [30/Apr/2025:21:06:50 -0400] "GET /wp-content/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:50 -0400] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:50 -0400] "GET /wp-content/upgrade-temp-backup/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:50 -0400] "GET /wp-content/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:51 -0400] "GET /wp-includes/IXR/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:06:51 -0400] "GET /wp-includes/pomo/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:51 -0400] "GET /wp-includes/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:51 -0400] "GET /xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 103.109.244.115 - - [30/Apr/2025:21:06:51 -0400] "GET /user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:52 -0400] "GET /wp-content/languages/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:52 -0400] "GET /config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:52 -0400] "GET /goat1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:52 -0400] "GET /wp-admin/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.115 - - [30/Apr/2025:21:06:52 -0400] "GET /wp-content/plugins/fix/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:53 -0400] "GET /wp-includes/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:53 -0400] "GET /wp-admin/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:53 -0400] "GET /wp-admin/network/word.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:53 -0400] "GET /extracte_wordprees/dirfunc/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:53 -0400] "GET /wp-admih.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:53 -0400] "GET /wp-content/plugins/shell/noimg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:54 -0400] "GET /land.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:54 -0400] "GET /hobi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:54 -0400] "GET /wp-content/plugins/Core-Econ/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:54 -0400] "GET /x7.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:54 -0400] "GET /wp-admin/network/abuot.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.115 - - [30/Apr/2025:21:06:55 -0400] "GET /.well-known/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:55 -0400] "GET /FoxWSOv1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:55 -0400] "GET /Patrick.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:56 -0400] "GET /modules/karakaroa/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:56 -0400] "GET /wp-includes/images/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:56 -0400] "GET /abuot.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:06:56 -0400] "GET /black2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:57 -0400] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.115 - - [30/Apr/2025:21:06:57 -0400] "GET /wp-content/plugins/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:57 -0400] "GET /jkaeeehs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:58 -0400] "GET /.well-known/pki-validation/wp-login.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:58 -0400] "GET /wp-includes/wp-load.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:06:58 -0400] "GET /wp-admin/includes/manager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:06:58 -0400] "GET /vendor/guzzlehttp/alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:58 -0400] "GET /wp-admin/meta/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:59 -0400] "GET /wp-content/plugins/ttxecy/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:59 -0400] "GET /wp-Includes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:06:59 -0400] "GET /include/bussubmit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:59 -0400] "GET /map.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:06:59 -0400] "GET /olux.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:00 -0400] "GET /wp-includespreviews.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:00 -0400] "GET /repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:00 -0400] "GET /wp-admin/images/module.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:07:00 -0400] "GET /wp-includes/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:00 -0400] "GET /admin/controller/extension/wpm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:00 -0400] "GET /payout.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:07:01 -0400] "GET /wp_info.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:07:01 -0400] "GET /wp-content/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:07:01 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:01 -0400] "GET /by.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:07:01 -0400] "GET /wp-content/plugins/Cache/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:07:02 -0400] "GET /wp-includes/sodium_compat/src/Core/Curve25519/Ge/wp_blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:07:02 -0400] "GET /wp-admin/includes/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:02 -0400] "GET /wp-content/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:07:02 -0400] "GET /wp-includes/blocks/table/int/tmpl/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.115 - - [30/Apr/2025:21:07:02 -0400] "GET /wp-admin/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.115 - - [30/Apr/2025:21:07:03 -0400] "GET /wp-content/plugins/ccx/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.115 - - [30/Apr/2025:21:07:03 -0400] "GET /admin/controller/extension/extension/Not_Found.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:03 -0400] "GET /google.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:07:03 -0400] "GET /sidwso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:03 -0400] "GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.115 - - [30/Apr/2025:21:07:03 -0400] "GET /wp-includes/Requests/Text/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:04 -0400] "GET /wp-includes/Requests/Text/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.115 - - [30/Apr/2025:21:07:04 -0400] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:04 -0400] "GET /wp-includes/random_compat/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:04 -0400] "GET /style2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:04 -0400] "GET /wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.115 - - [30/Apr/2025:21:07:05 -0400] "GET /wp-scripts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:15 -0400] "GET /.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.117 - - [30/Apr/2025:21:07:16 -0400] "GET /.well-known/pki-validation/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:16 -0400] "GET /.well-known/acme-challenge/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:16 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.117 - - [30/Apr/2025:21:07:16 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:16 -0400] "GET /wp-content/themes/tflow/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:16 -0400] "GET /wp-admin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:17 -0400] "GET /wordpress/wp-admin/includes HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:17 -0400] "GET /wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:17 -0400] "GET /ALFA_DATA/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:17 -0400] "GET /wp-content/upgrade/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.117 - - [30/Apr/2025:21:07:17 -0400] "GET /wp-admin/css/colors/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.117 - - [30/Apr/2025:21:07:18 -0400] "GET /wp-includes/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:18 -0400] "GET /wp-includes/ID3 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.117 - - [30/Apr/2025:21:07:18 -0400] "GET /wp-includes/Requests/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:18 -0400] "GET /wp-includes/blocks/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:18 -0400] "GET /wp-includes/certificates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:19 -0400] "GET /wp-includes/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:19 -0400] "GET /wp-admin/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.117 - - [30/Apr/2025:21:07:19 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:19 -0400] "GET /wp-admin/meta/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.117 - - [30/Apr/2025:21:07:19 -0400] "GET /wp-admin/network/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:19 -0400] "GET /wp-admin/user/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.117 - - [30/Apr/2025:21:07:20 -0400] "GET /wp-content/uploads/ao_ccss/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:20 -0400] "GET /wp-content/uploads/2021/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:20 -0400] "GET /wp-content/plugins/elementor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:20 -0400] "GET /wp-content/mu-plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:20 -0400] "GET /upload/image/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:21 -0400] "GET /wordpress/wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.117 - - [30/Apr/2025:21:07:21 -0400] "GET /wordpress/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:21 -0400] "GET /blog/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:21 -0400] "GET /sites/default/files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:21 -0400] "GET /admin/controller/extension/extension/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:22 -0400] "GET /admin/editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:22 -0400] "GET /admin/images/slider/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:22 -0400] "GET /admin/tmp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.117 - - [30/Apr/2025:21:07:22 -0400] "GET /admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:22 -0400] "GET /Admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:22 -0400] "GET /admin/uploads/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:23 -0400] "GET /administrator/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:23 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:23 -0400] "GET /assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:23 -0400] "GET /cgi-bin/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:23 -0400] "GET /components/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.117 - - [30/Apr/2025:21:07:24 -0400] "GET /home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.117 - - [30/Apr/2025:21:07:24 -0400] "GET /include/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:24 -0400] "GET /modules/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:24 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:24 -0400] "GET /mt/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:25 -0400] "GET /site/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:25 -0400] "GET /tmps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:25 -0400] "GET /wordpress/wp-admin/includes/wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:25 -0400] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:25 -0400] "GET /wp-admin/css/colors/light/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:26 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.117 - - [30/Apr/2025:21:07:26 -0400] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:26 -0400] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:26 -0400] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:26 -0400] "GET /wp-admin/js/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.117 - - [30/Apr/2025:21:07:27 -0400] "GET /wp-content/languages/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:27 -0400] "GET /wp-content/uploads/2022/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:27 -0400] "GET /wp-content/uploads/2023/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:27 -0400] "GET /wp-content/uploads/2024/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:28 -0400] "GET /wp-includes/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 103.109.244.117 - - [30/Apr/2025:21:07:28 -0400] "GET /wp-includes/css/dist/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:28 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:29 -0400] "GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:29 -0400] "GET /wp-includes/images/crystal/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.117 - - [30/Apr/2025:21:07:29 -0400] "GET /wp-includes/images/media/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:29 -0400] "GET /wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:29 -0400] "GET /wp-includes/images/wlw/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.117 - - [30/Apr/2025:21:07:30 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:30 -0400] "GET /wp-includes/js/plupload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:30 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:30 -0400] "GET /wp-includes/sitemaps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.117 - - [30/Apr/2025:21:07:30 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:31 -0400] "GET /cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:31 -0400] "GET /cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:31 -0400] "GET /cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:31 -0400] "GET /ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:32 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.117 - - [30/Apr/2025:21:07:32 -0400] "GET /wp-content/plugins/linkpreview/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:32 -0400] "GET /wp-content/plugins/aryabot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:32 -0400] "GET /wp-content/plugins/BrutalShell/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.117 - - [30/Apr/2025:21:07:32 -0400] "GET /wp-content/plugins/cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:33 -0400] "GET /wp-content/plugins/cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:33 -0400] "GET /wp-content/plugins/cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:33 -0400] "GET /wp-content/plugins/db/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:33 -0400] "GET /wp-content/plugins/home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:33 -0400] "GET /wp-content/plugins/limit/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:34 -0400] "GET /wp-content/plugins/owfsmac/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:34 -0400] "GET /wp-content/plugins/prenota/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:34 -0400] "GET /wp-content/plugins/random/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:34 -0400] "GET /wp-content/plugins/ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:34 -0400] "GET /wp-content/plugins/Uwogh-Segs/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:35 -0400] "GET /wp-content/plugins/wp-diambar/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:35 -0400] "GET /wp-content/plugins/wp-freeform/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:35 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:35 -0400] "GET /wp-content/plugins/wpeazvp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.117 - - [30/Apr/2025:21:07:35 -0400] "GET /wp-content/plugins/zaen/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:36 -0400] "GET /wp-content/uploads/revslider/templates/immersion-photography/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:36 -0400] "GET /patriotic/wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:36 -0400] "GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:36 -0400] "GET /wp-content/plugins/core-stab/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.117 - - [30/Apr/2025:21:07:36 -0400] "GET /wp-content/themes/alera/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:36 -0400] "GET /wp-content/themes/rishi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:37 -0400] "GET /wp-content/themes/sketch/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:37 -0400] "GET /wp-content/themes/thuoc-nam/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.117 - - [30/Apr/2025:21:07:37 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.117 - - [30/Apr/2025:21:07:37 -0400] "GET /wp-content/themes/wp-pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:37 -0400] "GET /wp-content/themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.117 - - [30/Apr/2025:21:07:37 -0400] "GET /wp-content/themes/zakra/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.117 - - [30/Apr/2025:21:07:38 -0400] "GET /wp-content/uploads/simple-file-list/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:38 -0400] "GET /admin/upload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:38 -0400] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:38 -0400] "GET /up/.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:38 -0400] "GET /wp-content/plugins/apikey/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:39 -0400] "GET /wp-content/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:39 -0400] "GET /images/ HTTP/1.1" 200 2047 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:39 -0400] "GET /images/images/w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.117 - - [30/Apr/2025:21:07:39 -0400] "GET /css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 103.109.244.117 - - [30/Apr/2025:21:07:39 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:39 -0400] "GET /wp-includes/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 103.109.244.117 - - [30/Apr/2025:21:07:40 -0400] "GET /wp-includes/SimplePie/XML/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:40 -0400] "GET /wp-content/uploads/wpr-addons/forms/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:40 -0400] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.117 - - [30/Apr/2025:21:07:40 -0400] "GET /wordpress/wp-admin/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:40 -0400] "GET /wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.117 - - [30/Apr/2025:21:07:41 -0400] "GET /wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:41 -0400] "GET /wp-includes/SimplePie/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:41 -0400] "GET /wp-includes/Text/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:41 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:41 -0400] "GET /wp-includes/customize/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.117 - - [30/Apr/2025:21:07:41 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:42 -0400] "GET /wp-includes/pomo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:42 -0400] "GET /wp-includes/rest-api/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:42 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:42 -0400] "GET /wp-content/plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 103.109.244.117 - - [30/Apr/2025:21:07:42 -0400] "GET /wp-content/plugins/pwnd/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:42 -0400] "GET /about/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:43 -0400] "GET /plugins/jquery.filer/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:43 -0400] "GET /wp-content/plugins/dummyyummy/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103.109.244.117 - - [30/Apr/2025:21:07:43 -0400] "GET /wp-content/themes/seotheme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:43 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:43 -0400] "GET /wp-content/plugins/revslider/includes/external/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:43 -0400] "GET /wp-content/plugins/Cache/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:44 -0400] "GET /wp-content/themes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:44 -0400] "GET /wp-includes/theme-compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:44 -0400] "GET /index/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:44 -0400] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:44 -0400] "GET /fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:44 -0400] "GET /js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:45 -0400] "GET /routes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:45 -0400] "GET /uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:45 -0400] "GET /templates/beez3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:45 -0400] "GET /wp-content/themes/digital-download/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 103.109.244.117 - - [30/Apr/2025:21:07:45 -0400] "GET /wp-content/plugins/wp-theme-editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.117 - - [30/Apr/2025:21:07:45 -0400] "GET /templates/atomic/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:46 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:46 -0400] "GET /wp-includes/assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:46 -0400] "GET /wp-includes/js/jcrop/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:46 -0400] "GET /wp-content/plugins/google-seo-rank/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 103.109.244.117 - - [30/Apr/2025:21:07:46 -0400] "GET /wp-content/plugins/erin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 103.109.244.117 - - [30/Apr/2025:21:07:47 -0400] "GET /wp-content/maintenance/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 103.109.244.117 - - [30/Apr/2025:21:07:47 -0400] "GET /wp-content/x/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:47 -0400] "GET /wp-content/plugins/seooyanz/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.117 - - [30/Apr/2025:21:07:47 -0400] "GET /wp-content/themes/sky-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:47 -0400] "GET /wp-content/plugins/cp-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 103.109.244.117 - - [30/Apr/2025:21:07:47 -0400] "GET /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 103.109.244.117 - - [30/Apr/2025:21:07:48 -0400] "GET /wp-content/uploads/typehub/custom/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:48 -0400] "GET /wp-content/plugins/rencontre/inc/photo_import/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:48 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:48 -0400] "GET /wp-content/plugins/pwnd-1/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 103.109.244.117 - - [30/Apr/2025:21:07:48 -0400] "GET /.tmb/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:49 -0400] "GET /wp-content/plugins/fix/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 103.109.244.117 - - [30/Apr/2025:21:07:49 -0400] "GET /includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 103.109.244.117 - - [30/Apr/2025:21:07:49 -0400] "GET /themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 94.102.55.18 - - [30/Apr/2025:23:34:20 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Mobile/15E148 Safari/604.1" 170.205.30.127 - - [01/May/2025:01:17:58 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 43.205.98.73 - - [01/May/2025:01:25:25 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:26 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:26 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:27 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:27 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:28 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:28 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:28 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:29 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:01:25:29 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.157.50.58 - - [01/May/2025:03:09:44 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 35.229.41.176 - - [01/May/2025:04:49:30 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 35.229.41.176 - - [01/May/2025:04:49:32 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 43.133.220.37 - - [01/May/2025:10:51:55 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 51.222.253.9 - - [01/May/2025:15:29:21 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 54.36.148.157 - - [01/May/2025:15:29:27 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 43.165.65.180 - - [01/May/2025:19:49:59 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 54.36.148.152 - - [01/May/2025:20:25:00 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 196.251.80.228 - - [01/May/2025:20:25:46 -0400] "GET / HTTP/1.1" 200 0 "-" "-" 43.205.98.73 - - [01/May/2025:21:35:17 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:17 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:18 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:18 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:18 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:19 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:19 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:19 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:20 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [01/May/2025:21:35:20 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 83.147.242.117 - - [02/May/2025:03:39:27 -0400] "GET /admin/login HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:29 -0400] "GET /webadmin HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:29 -0400] "GET /weblogin HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:30 -0400] "GET /guanli HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:31 -0400] "GET /cmsadmin HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:32 -0400] "GET /admincms HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:32 -0400] "GET /cms_admin HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:32 -0400] "GET /dede HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:32 -0400] "GET /admins HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:32 -0400] "GET /admin HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:34 -0400] "GET /manage HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:34 -0400] "GET /manager HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /system HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /htadmin HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /adminht HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /admin.jsp/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /admin.aspx HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /admin.jsp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /web_admin HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 83.147.242.117 - - [02/May/2025:03:39:35 -0400] "GET /guanliyuan HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/72.0" 49.51.183.15 - - [02/May/2025:04:52:52 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 194.145.227.125 - - [02/May/2025:05:44:17 -0400] "GET /wp-content/plugins/wp-time-capsule/readme.txt HTTP/1.1" 200 0 "-" "ALittle Client" 195.20.18.145 - - [02/May/2025:05:59:42 -0400] "GET /admin/assets/plugins/jQuery-File-Upload/server/php/index.php?file=tf2rghf.jpg HTTP/1.1" 200 0 "-" "ALittle Client" 196.251.88.138 - - [02/May/2025:06:33:17 -0400] "GET /simple.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 196.251.88.138 - - [02/May/2025:06:33:32 -0400] "GET /wp-content/themes/about.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 152.53.225.138 - - [02/May/2025:06:39:46 -0400] "GET /style.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 170.106.11.141 - - [02/May/2025:11:05:14 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 196.251.87.240 - - [02/May/2025:11:35:14 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 196.251.87.240 - - [02/May/2025:11:35:14 -0400] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 196.251.87.240 - - [02/May/2025:11:35:15 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 196.251.87.240 - - [02/May/2025:11:35:21 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 196.251.87.240 - - [02/May/2025:11:35:21 -0400] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 196.251.87.240 - - [02/May/2025:11:35:24 -0400] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 216.244.66.234 - - [02/May/2025:12:01:04 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.234 - - [02/May/2025:12:10:55 -0400] "GET /?C=N;O=D HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 54.36.148.133 - - [02/May/2025:12:20:11 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 51.222.253.6 - - [02/May/2025:12:20:12 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 51.222.253.10 - - [02/May/2025:14:51:17 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 43.205.98.73 - - [02/May/2025:17:31:17 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:18 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:18 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:18 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:19 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:19 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:19 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:20 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:20 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [02/May/2025:17:31:20 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 35.185.41.213 - - [02/May/2025:18:06:03 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 35.185.41.213 - - [02/May/2025:18:06:06 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 66.179.95.92 - - [02/May/2025:18:15:09 -0400] "GET /style.php HTTP/1.1" 200 0 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 43.130.106.18 - - [02/May/2025:18:31:33 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 170.205.30.127 - - [02/May/2025:22:36:34 -0400] "GET /cgi-bin/cgi-bin/cache.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 192.71.3.222 - - [02/May/2025:23:33:32 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (Android 14; Mobile; rv:123.0) Gecko/123.0 Firefox/123" 5.133.192.189 - - [02/May/2025:23:33:33 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Android 14; Mobile; rv:123.0) Gecko/123.0 Firefox/123" 43.153.49.151 - - [03/May/2025:02:03:50 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 170.205.30.127 - - [03/May/2025:03:36:40 -0400] "GET /siteheads.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 196.251.115.39 - - [03/May/2025:04:40:58 -0400] "POST /ss.php HTTP/1.1" 200 0 "-" "python-requests/2.27.1" 217.154.82.33 - - [03/May/2025:06:39:53 -0400] "GET /wp-content/plugins/suretriggers/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:39:55 -0400] "GET /wp-content/plugins/chaty-pro/css/chaty-front.min.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:39:56 -0400] "GET /wp-content/plugins/security-malware-firewall/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:39:58 -0400] "GET /wp-content/plugins/indeed-wp-superbackup/admin/assets/css/style.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:00 -0400] "GET /wp-content/plugins/post-grid/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:02 -0400] "GET /wp-content/themes/homey/style.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:09 -0400] "GET /wp-content/plugins/fancy-product-designer/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:10 -0400] "GET /wp-content/plugins/jobboardwp/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:12 -0400] "GET /wp-content/plugins/pie-register-premium/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:16 -0400] "GET /wp-content/plugins/indeed-wp-superbackup/languages/indeed-wp-superbackup.pot HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:20 -0400] "GET /wp-content/plugins/wp-time-capsule/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:22 -0400] "GET /wp-content/plugins/wp-membership/languages/wpmembership.pot HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:23 -0400] "GET /wp-content/plugins/wp-jobsearch/admin/css/admin.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:23 -0400] "GET /wp-content/plugins/gutenkit-blocks-addon/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:27 -0400] "GET /wp-content/plugins/rss-feed-post-generator-echo/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:29 -0400] "GET /wp-content/plugins/json-api-user/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:32 -0400] "GET /wp-content/plugins/charitable/CHANGELOG.md HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:40 -0400] "GET /wp-content/plugins/js-support-ticket/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:43 -0400] "GET /wp-content/plugins/give/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:45 -0400] "GET /wp-content/plugins/instawp-connect/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:46 -0400] "GET /wp-content/plugins/wp-seopress/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:46 -0400] "GET /wp-content/plugins/keydatas/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:48 -0400] "GET /wp-content/plugins/wp-mlm/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:50 -0400] "GET /wp-content/plugins/chatbot-chatgpt/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:52 -0400] "GET /wp-content/plugins/wp-automatic/css/wp-automatic.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:53 -0400] "GET /wp-content/plugins/wp-automatic/changelog HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:56 -0400] "GET /wp-content/plugins/wp-photo-album-plus/changelog.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:40:59 -0400] "GET /wp-content/plugins/startklar-elmentor-forms-extwidgets/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:01 -0400] "GET /wp-content/plugins/learning-management-system/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:04 -0400] "GET /wp-content/plugins/woocommerce-simple-registration/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:05 -0400] "GET /wp-content/plugins/instawp-connect/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:09 -0400] "GET /wp-content/plugins/masterstudy-lms-learning-management-system/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:12 -0400] "GET /wp-content/plugins/activedemand/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:14 -0400] "GET /wp-content/plugins/phppoet-checkout-fields/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:16 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:17 -0400] "GET /wp-content/plugins/bertha-ai-free/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:19 -0400] "GET /wp-content/plugins/rencontre/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:23 -0400] "GET /wp-content/plugins/ai-engine/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:24 -0400] "GET /wp-content/plugins/backup-backup/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:26 -0400] "GET /wp-content/plugins/royal-elementor-addons/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:27 -0400] "GET /wp-content/plugins/import-xml-feed/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:29 -0400] "GET /wp-content/plugins/kadence-blocks/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:30 -0400] "GET /wp-content/plugins/forminator/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:31 -0400] "GET /wp-content/plugins/ht-mega-for-elementor/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:32 -0400] "GET /wp-content/plugins/wp-post-author/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:34 -0400] "GET /wp-content/plugins/mstore-api/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:35 -0400] "GET /wp-content/plugins/ultimate-member/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:36 -0400] "GET /wp-content/plugins/essential-addons-for-elementor-lite/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:37 -0400] "GET /wp-content/plugins/woocommerce-payments/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:39 -0400] "GET /wp-content/plugins/zendrop-dropshipping-and-fulfillment/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:40 -0400] "GET /complete-order/?selected_package=1 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:42 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:43 -0400] "GET /wp-content/plugins/n-media-woocommerce-checkout-fields/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:44 -0400] "GET /wp-content/plugins/videowhisper-live-streaming-integration/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:46 -0400] "GET /wp-content/plugins/js-support-ticket/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:46 -0400] "GET /wp-content/themes/statfort-new/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:48 -0400] "GET /wp-content/themes/faith-theme/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:49 -0400] "GET /wp-content/themes/soccer-theme/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:50 -0400] "GET /wp-content/themes/churchlife/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:52 -0400] "GET /wp-content/themes/onelife/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:55 -0400] "GET /wp-content/themes/snapture/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:56 -0400] "GET /wp-content/themes/theme-deejay/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:41:59 -0400] "GET /wp-content/themes/bolster-theme/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:00 -0400] "GET /wp-content/themes/rocky-theme/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:01 -0400] "GET /wp-content/themes/bolster/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:03 -0400] "GET /wp-content/themes/soundblast/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:05 -0400] "GET /wp-content/themes/spikes-black/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:07 -0400] "GET /wp-content/themes/spikes/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:08 -0400] "GET /wp-content/themes/kingclub-theme/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:08 -0400] "GET /wp-content/themes/club-theme/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:10 -0400] "GET /wp-content/themes/statfort/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:11 -0400] "GET /wp-content/themes/aidreform/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:13 -0400] "GET /wp-content/themes/footysquare/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:16 -0400] "GET /wp-content/themes/westand/include/lang_upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:18 -0400] "GET /wp-content/plugins/dsp_dating/wpdating-gallery/lib/server/php/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:19 -0400] "GET /wp-content/plugins/yith-woocommerce-gift-cards-premium/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:21 -0400] "GET /wp-content/plugins/membership-for-woocommerce/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:22 -0400] "GET /wp-content/plugins/wp-upg/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:23 -0400] "GET /wp-content/plugins/booking-calendar/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:24 -0400] "GET /wp-content/plugins/woo-refund-and-exchange-lite/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:25 -0400] "GET /wp-content/plugins/armember/js/arm_widgets_js.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:27 -0400] "GET /wp-content/plugins/armember/documentation/index.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:30 -0400] "GET /wp-content/plugins/jobboardwp/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:31 -0400] "GET /wp-content/themes/listingo/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:32 -0400] "GET /wp-content/themes/listingo/js/listingo_callbacks.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:33 -0400] "GET /wp-content/themes/greyd_suite/style.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:35 -0400] "GET /wp-content/plugins/alphabetic-pagination/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:35 -0400] "GET /wp-content/plugins/scripts-organizer/plugins/meta-box/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:36 -0400] "GET /wp-content/themes/workreap/style.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:39 -0400] "GET /wp-content/plugins/wpgateway/css/style.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:40 -0400] "GET /wp-content/plugins/ultimate-member/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:40 -0400] "GET /wp-content/plugins/ninja-forms/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:45 -0400] "GET /wp-content/plugins/armember-membership/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:46 -0400] "GET /wp-content/plugins/wp-live-chat-support-pro/css/wplc_styles_pro.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:49 -0400] "GET /wp-content/plugins/wp-user-avatar/changelog.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:50 -0400] "GET /wp-content/plugins/sitemap-by-click5/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:51 -0400] "GET /wp-content/plugins/nd-restaurant-reservations/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:52 -0400] "GET /wp-content/plugins/nd-donations/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:53 -0400] "GET /wp-content/plugins/nd-booking/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:55 -0400] "GET /wp-content/plugins/nd-shortcodes/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:56 -0400] "GET /wp-content/plugins/nd-learning/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:58 -0400] "GET /wp-content/plugins/wpcargo/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:42:59 -0400] "GET /wp-content/plugins/woo-product-table/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:00 -0400] "GET /wp-content/plugins/tatsu/changelog.md HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:01 -0400] "GET /wp-content/plugins/masterstudy-lms-learning-management-system/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:04 -0400] "GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:04 -0400] "GET /wp-content/plugins/vc-tabs/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:05 -0400] "GET /wp-content/plugins/shortcode-addons/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:06 -0400] "GET /wp-content/plugins/dzs-zoomsounds/admin/admin.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:08 -0400] "GET /wp-content/plugins/mstore-api/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:08 -0400] "GET /wp-content/plugins/superlogoshowcase-wp/css/sls-wp-admin.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:09 -0400] "GET /wp-content/plugins/super-interactive-maps/css/sim-wp-admin.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:10 -0400] "GET /wp-content/plugins/superstorefinder-wp/css/ssf-wp-admin.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:11 -0400] "GET /wp-content/plugins/e-signature/page-template/default/style.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:13 -0400] "GET /wp-content/plugins/angwp/__%20UPDATES.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:15 -0400] "GET /wp-content/plugins/ait-csv-import-export/changelog.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:16 -0400] "GET /wp-content/plugins/image-hover-effects-ultimate/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:17 -0400] "GET /wp-content/plugins/ulisting/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:21 -0400] "GET /wp-content/plugins/wp-pinterest-automatic/changelog HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:24 -0400] "GET /wp-content/plugins/capabilities-pro/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:27 -0400] "GET /wp-content/plugins/capability-manager-enhanced/readme.txt HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:28 -0400] "GET /wp-content/plugins/wp-automatic/css/wp-automatic.css HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:30 -0400] "GET /wp-content/plugins/wp-automatic/changelog HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:31 -0400] "GET /wp-content/plugins/wp-user-extra-fields/js/wpuef-configurator.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 217.154.82.33 - - [03/May/2025:06:43:32 -0400] "GET /wp-content/plugins/woocommerce-upload-files/js/wcuf-admin-menu.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 43.128.67.187 - - [03/May/2025:08:12:40 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 92.255.85.164 - - [03/May/2025:09:24:58 -0400] "GET / HTTP/1.0" 200 0 "http://deepakpariyar.com.np/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0" 204.12.231.186 - - [03/May/2025:11:32:42 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 OPR/77.0.4054.203" 3.133.128.36 - - [03/May/2025:12:01:12 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:13 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:14 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:14 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:15 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:15 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:15 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:16 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:16 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 3.133.128.36 - - [03/May/2025:12:01:17 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:26 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:26 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:27 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:27 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:27 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:27 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:28 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:28 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:28 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [03/May/2025:13:31:28 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 51.222.253.4 - - [03/May/2025:13:52:11 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 51.222.253.20 - - [03/May/2025:13:52:12 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 43.153.71.12 - - [03/May/2025:14:37:41 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 52.170.19.121 - - [03/May/2025:14:58:04 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:05 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:05 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:05 -0400] "GET /flower.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:05 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:05 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:05 -0400] "GET /meta.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /index.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /randkeyword.php HTTP/1.1" 404 1251 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /hehe.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /user.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:06 -0400] "GET /functions.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:07 -0400] "GET /cron.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:07 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:07 -0400] "GET /gecko-new.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:07 -0400] "GET /cookie.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:07 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:07 -0400] "GET /spip.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /22.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /room.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /disagreed.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /text.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /alfa-rex.php7 HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /feeds.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:08 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:09 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:09 -0400] "GET /system.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:09 -0400] "GET /colors.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:09 -0400] "GET /updates.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:09 -0400] "GET /alfa-rex1.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:09 -0400] "GET /wp-index.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:09 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:10 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:10 -0400] "GET /alfanew.php7 HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:10 -0400] "GET /locale.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:11 -0400] "GET /wxo.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:11 -0400] "GET /colour.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:11 -0400] "GET /files.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:11 -0400] "GET /install.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:11 -0400] "GET /wp-contentt.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:11 -0400] "GET /config.php7 HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:11 -0400] "GET /config.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:12 -0400] "GET /theme.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:12 -0400] "GET /block-bindings.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:12 -0400] "GET /class_api.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:12 -0400] "GET /inputs.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:12 -0400] "GET /root.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /cloud.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /configs.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /update.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:13 -0400] "GET /input.php HTTP/1.1" 200 0 "-" "-" 52.170.19.121 - - [03/May/2025:14:58:14 -0400] "GET /aaa.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:00 -0400] "GET /system.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:01 -0400] "GET /wp-content/themes/ty.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:01 -0400] "GET /lock360.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:01 -0400] "GET /man.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:01 -0400] "GET /wp-includes/Requests/alfa-rex.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:01 -0400] "GET /wp-includes/string.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:02 -0400] "GET /mrx.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:02 -0400] "GET /file_browser.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:02 -0400] "GET /packed.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:02 -0400] "GET /configure.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:02 -0400] "GET /bootstrap.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:02 -0400] "GET /update.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:03 -0400] "GET /browse.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:03 -0400] "GET /cjfuns.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:03 -0400] "GET /lock.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:03 -0400] "GET /filemanager.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:03 -0400] "GET /sim.php/wp-includes/certificates/plugins.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:03 -0400] "GET /used HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:04 -0400] "GET /lib.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:04 -0400] "GET /byp.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:04 -0400] "GET /back.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:04 -0400] "GET /webadmin.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:04 -0400] "GET /temp.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:05 -0400] "GET /media.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:05 -0400] "GET /wp-activate.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:05 -0400] "GET /wp-blog-header.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:05 -0400] "GET /wp-comments-post.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:05 -0400] "GET /wp-config-premigrate.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:06 -0400] "GET /wp-config.php HTTP/1.1" 403 1242 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:06 -0400] "GET /wp-links-opml.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:06 -0400] "GET /wp-settings.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:06 -0400] "GET //wp-2019.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:06 -0400] "GET /updates.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:06 -0400] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 404 1251 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:07 -0400] "GET /ab.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:07 -0400] "GET /b0.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:07 -0400] "GET /wp-includes/ID3/xBrain.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:07 -0400] "GET /bala.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:07 -0400] "GET /upload2/10-27-24_8:26_1.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:07 -0400] "GET /css/cloud.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:08 -0400] "GET /img/cloud.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:08 -0400] "GET /avaa.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:08 -0400] "GET /images/cloud.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:08 -0400] "GET /libraries/legacy/updates.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:08 -0400] "GET /libraries/phpmailer/updates.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:08 -0400] "GET /libraries/vendor/updates.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:09 -0400] "GET /wp-p.php7 HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:09 -0400] "GET /wp-includes/repeater.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:09 -0400] "GET /wsoyanz.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:09 -0400] "GET /yanz.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:09 -0400] "GET /cache-compat.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:10 -0400] "GET /ajax-actions.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:10 -0400] "GET /wp-consar.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:10 -0400] "GET /repeater.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:10 -0400] "GET /ebs.php7 HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:10 -0400] "GET /alfanew2.php7 HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:11 -0400] "GET /css/xmrlpc.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:11 -0400] "GET /img/xmrlpc.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:11 -0400] "GET /images/xmrlpc.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:11 -0400] "GET /upfile.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:11 -0400] "GET /wp-sigunq.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:12 -0400] "GET /wso112233.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:12 -0400] "GET /plugins.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:12 -0400] "GET /wp-includes/css/thems.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:12 -0400] "GET /120f9.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:12 -0400] "GET /data.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:13 -0400] "GET /xl2023.php.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:13 -0400] "GET /print/bkindex.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:13 -0400] "GET /gzak2w.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:13 -0400] "GET /wp-includes/PHPMailer/xBrain.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:13 -0400] "GET /wp-includes/SimplePie/xBrain.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:13 -0400] "GET /xBrain.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:14 -0400] "GET /xxx.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:14 -0400] "GET /credits.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:14 -0400] "GET /.tmb/cloud.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:14 -0400] "GET /504.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:14 -0400] "GET /version.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:14 -0400] "GET //themes/zMousse/otuz1.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:15 -0400] "GET /thumbs.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:15 -0400] "GET /asus.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:15 -0400] "GET /2025.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:15 -0400] "GET /pi.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:15 -0400] "GET /license.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:16 -0400] "GET /wp-includes/rest-api/alfa-rex.php7 HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:16 -0400] "GET /randkeyword.PhP8 HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:16 -0400] "GET /priv.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:16 -0400] "GET /cgi-bin/cloud.php HTTP/1.1" 404 1251 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:16 -0400] "GET /fresh: HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:16 -0400] "GET /max.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:17 -0400] "GET /xml.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:17 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:17 -0400] "GET /xmrlpc.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:17 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:17 -0400] "GET /search/label/PHP-Shells HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:18 -0400] "GET /vv.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:18 -0400] "GET //wsa.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:18 -0400] "GET /gel4y.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:18 -0400] "GET /web.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:18 -0400] "GET /wp-theme.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:19 -0400] "GET /wp-header.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:19 -0400] "GET /mail.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:19 -0400] "GET /fresh HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:19 -0400] "GET /todo.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:19 -0400] "GET /locale.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:19 -0400] "GET /users.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:20 -0400] "GET /ynz.PhP7 HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:20 -0400] "GET /lufix.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:20 -0400] "GET /contact.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:20 -0400] "GET /filemanager/dialog.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:20 -0400] "GET /wp-info.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:21 -0400] "GET /wp-includes/cloud.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:21 -0400] "GET /wp-includes/wp-activate.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:21 -0400] "GET /ova-tools.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:21 -0400] "GET /by.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:21 -0400] "GET /cgi-bin/plugins.php HTTP/1.1" 404 1251 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:21 -0400] "GET /class.api.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:22 -0400] "GET /cms.php?cmsinc=login HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:22 -0400] "GET /daddy.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:22 -0400] "GET /fosil.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:22 -0400] "GET /indeex.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:22 -0400] "GET /ioxi002.PhP7 HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:22 -0400] "GET /jp.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:23 -0400] "GET /options.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:23 -0400] "GET /pylSE9O2gWV.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:23 -0400] "GET /shell20211028.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:23 -0400] "GET /sidwso.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:23 -0400] "GET /smaxx.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:24 -0400] "GET /style.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:24 -0400] "GET /upgrade.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:24 -0400] "GET /wordpress/wp-includes/IXR/allez.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:24 -0400] "GET /wp-includes/IXR/allez.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:24 -0400] "GET /wp-includes/certificates/cloud.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:25 -0400] "GET /wp-includes/images/include.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:25 -0400] "GET /wp-includes/product.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:25 -0400] "GET /wp-includes/rest-api/network.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:25 -0400] "GET /wp-l0gin.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:25 -0400] "GET /xp.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:26 -0400] "GET /zcoqCGrnVix.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:26 -0400] "GET /mcs.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:26 -0400] "GET /shell20211022.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:26 -0400] "GET /sidwsi.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:26 -0400] "GET /rx.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:27 -0400] "GET /wp-cache.php HTTP/1.1" 200 0 "-" "-" 13.74.185.86 - - [03/May/2025:15:34:27 -0400] "GET /cloud.php/ HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:41 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:41 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:41 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /flower.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /meta.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /index.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /randkeyword.php HTTP/1.1" 404 1251 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:42 -0400] "GET /hehe.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /user.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /functions.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /cron.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /gecko-new.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /cookie.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:43 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /spip.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /22.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /room.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /disagreed.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /text.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /alfa-rex.php7 HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:44 -0400] "GET /feeds.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:45 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:45 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:45 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:45 -0400] "GET /system.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:45 -0400] "GET /colors.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:45 -0400] "GET /updates.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:45 -0400] "GET /alfa-rex1.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /wp-index.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /alfanew.php7 HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /locale.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /wxo.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /colour.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:46 -0400] "GET /files.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /install.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /wp-contentt.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /config.php7 HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /config.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /theme.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /block-bindings.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /class_api.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /inputs.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /root.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:47 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:48 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:48 -0400] "GET /cloud.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:48 -0400] "GET /configs.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:48 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:48 -0400] "GET /update.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:48 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:48 -0400] "GET /input.php HTTP/1.1" 200 0 "-" "-" 40.123.39.43 - - [03/May/2025:20:15:49 -0400] "GET /aaa.php HTTP/1.1" 200 0 "-" "-" 43.130.60.195 - - [03/May/2025:21:37:07 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 51.222.253.6 - - [03/May/2025:23:08:26 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 23.27.110.54 - - [03/May/2025:23:54:43 -0400] "GET /.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:43 -0400] "GET /.well-known/pki-validation/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:54:43 -0400] "GET /.well-known/acme-challenge/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:44 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:45 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:54:45 -0400] "GET /wp-content/themes/tflow/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:46 -0400] "GET /wp-admin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:54:46 -0400] "GET /wordpress/wp-admin/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:47 -0400] "GET /wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:47 -0400] "GET /ALFA_DATA/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:47 -0400] "GET /wp-content/upgrade/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:54:47 -0400] "GET /wp-admin/css/colors/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:54:48 -0400] "GET /wp-includes/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:48 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:48 -0400] "GET /wp-includes/Requests/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:49 -0400] "GET /wp-includes/blocks/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:49 -0400] "GET /wp-includes/certificates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:49 -0400] "GET /wp-includes/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 23.27.110.54 - - [03/May/2025:23:54:49 -0400] "GET /wp-admin/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:50 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:54:50 -0400] "GET /wp-admin/meta/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:50 -0400] "GET /wp-admin/network/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:51 -0400] "GET /wp-admin/user/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:51 -0400] "GET /wp-content/uploads/ao_ccss/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:51 -0400] "GET /wp-content/uploads/2021/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:54:52 -0400] "GET /wp-content/plugins/elementor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:54:52 -0400] "GET /wp-content/mu-plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:52 -0400] "GET /upload/image/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:54:53 -0400] "GET /wordpress/wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:54:53 -0400] "GET /wordpress/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:53 -0400] "GET /blog/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:54 -0400] "GET /sites/default/files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:54 -0400] "GET /admin/controller/extension/extension/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:54 -0400] "GET /admin/editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:55 -0400] "GET /admin/images/slider/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:55 -0400] "GET /admin/tmp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:56 -0400] "GET /admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:56 -0400] "GET /Admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:56 -0400] "GET /admin/uploads/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:56 -0400] "GET /administrator/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:54:57 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:57 -0400] "GET /assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:57 -0400] "GET /cgi-bin/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:58 -0400] "GET /components/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:58 -0400] "GET /home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:54:58 -0400] "GET /include/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:54:59 -0400] "GET /modules/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:54:59 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 23.27.110.54 - - [03/May/2025:23:54:59 -0400] "GET /mt/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:00 -0400] "GET /site/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:00 -0400] "GET /tmps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:00 -0400] "GET /wordpress/wp-admin/includes/wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:55:00 -0400] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:01 -0400] "GET /wp-admin/css/colors/light/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:01 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:55:01 -0400] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 23.27.110.54 - - [03/May/2025:23:55:02 -0400] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:02 -0400] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:55:02 -0400] "GET /wp-admin/js/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 23.27.110.54 - - [03/May/2025:23:55:02 -0400] "GET /wp-content/languages/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:03 -0400] "GET /wp-content/uploads/2022/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:03 -0400] "GET /wp-content/uploads/2023/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:03 -0400] "GET /wp-content/uploads/2024/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:04 -0400] "GET /wp-includes/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:04 -0400] "GET /wp-includes/css/dist/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:05 -0400] "GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:05 -0400] "GET /wp-includes/images/crystal/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 23.27.110.54 - - [03/May/2025:23:55:06 -0400] "GET /wp-includes/images/media/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:06 -0400] "GET /wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:07 -0400] "GET /wp-includes/images/wlw/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:07 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:07 -0400] "GET /wp-includes/js/plupload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:08 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:08 -0400] "GET /wp-includes/sitemaps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:09 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:55:09 -0400] "GET /cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:09 -0400] "GET /cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:09 -0400] "GET /cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:10 -0400] "GET /ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:55:11 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:11 -0400] "GET /wp-content/plugins/linkpreview/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 23.27.110.54 - - [03/May/2025:23:55:12 -0400] "GET /wp-content/plugins/aryabot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:12 -0400] "GET /wp-content/plugins/BrutalShell/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:12 -0400] "GET /wp-content/plugins/cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:13 -0400] "GET /wp-content/plugins/cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:14 -0400] "GET /wp-content/plugins/cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:14 -0400] "GET /wp-content/plugins/db/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:14 -0400] "GET /wp-content/plugins/home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:15 -0400] "GET /wp-content/plugins/limit/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:55:15 -0400] "GET /wp-content/plugins/owfsmac/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:15 -0400] "GET /wp-content/plugins/prenota/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:16 -0400] "GET /wp-content/plugins/random/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:16 -0400] "GET /wp-content/plugins/ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:16 -0400] "GET /wp-content/plugins/Uwogh-Segs/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:17 -0400] "GET /wp-content/plugins/wp-diambar/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:17 -0400] "GET /wp-content/plugins/wp-freeform/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:18 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:18 -0400] "GET /wp-content/plugins/wpeazvp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:18 -0400] "GET /wp-content/plugins/zaen/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:18 -0400] "GET /wp-content/uploads/revslider/templates/immersion-photography/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:19 -0400] "GET /patriotic/wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 23.27.110.54 - - [03/May/2025:23:55:19 -0400] "GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:20 -0400] "GET /wp-content/plugins/core-stab/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:20 -0400] "GET /wp-content/themes/alera/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:20 -0400] "GET /wp-content/themes/rishi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:20 -0400] "GET /wp-content/themes/sketch/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:21 -0400] "GET /wp-content/themes/thuoc-nam/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:21 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:55:21 -0400] "GET /wp-content/themes/wp-pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:22 -0400] "GET /wp-content/themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:22 -0400] "GET /wp-content/themes/zakra/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:23 -0400] "GET /wp-content/uploads/simple-file-list/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:23 -0400] "GET /admin/upload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:23 -0400] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:24 -0400] "GET /up/.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:55:24 -0400] "GET /wp-content/plugins/apikey/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:24 -0400] "GET /wp-content/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:24 -0400] "GET /images/ HTTP/1.1" 200 2047 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:55:25 -0400] "GET /images/images/w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 23.27.110.54 - - [03/May/2025:23:55:25 -0400] "GET /css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:26 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:55:26 -0400] "GET /wp-includes/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:26 -0400] "GET /wp-includes/SimplePie/XML/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:27 -0400] "GET /wp-content/uploads/wpr-addons/forms/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:27 -0400] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:27 -0400] "GET /wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:27 -0400] "GET /wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:28 -0400] "GET /wp-includes/SimplePie/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:28 -0400] "GET /wp-includes/Text/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:28 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:29 -0400] "GET /wp-includes/customize/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:29 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:29 -0400] "GET /wp-includes/pomo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:30 -0400] "GET /wp-includes/rest-api/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:30 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 23.27.110.54 - - [03/May/2025:23:55:31 -0400] "GET /wp-content/plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:31 -0400] "GET /wp-content/plugins/pwnd/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:31 -0400] "GET /about/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:31 -0400] "GET /plugins/jquery.filer/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:55:32 -0400] "GET /wp-content/plugins/dummyyummy/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 23.27.110.54 - - [03/May/2025:23:55:32 -0400] "GET /wp-content/themes/seotheme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:32 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:33 -0400] "GET /wp-content/plugins/revslider/includes/external/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 23.27.110.54 - - [03/May/2025:23:55:33 -0400] "GET /wp-content/plugins/Cache/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 23.27.110.54 - - [03/May/2025:23:55:33 -0400] "GET /wp-content/themes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:34 -0400] "GET /wp-includes/theme-compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:55:34 -0400] "GET /index/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:55:34 -0400] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:35 -0400] "GET /fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:35 -0400] "GET /js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:35 -0400] "GET /routes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:36 -0400] "GET /uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:55:36 -0400] "GET /templates/beez3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:37 -0400] "GET /wp-content/themes/digital-download/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:37 -0400] "GET /wp-content/plugins/wp-theme-editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 23.27.110.54 - - [03/May/2025:23:55:37 -0400] "GET /templates/atomic/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:37 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:38 -0400] "GET /wp-includes/assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:38 -0400] "GET /wp-includes/js/jcrop/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:38 -0400] "GET /wp-content/plugins/google-seo-rank/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:39 -0400] "GET /wp-content/plugins/erin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:39 -0400] "GET /wp-content/maintenance/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:39 -0400] "GET /wp-content/x/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:39 -0400] "GET /wp-content/plugins/seooyanz/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:40 -0400] "GET /wp-content/themes/sky-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:55:40 -0400] "GET /wp-content/plugins/cp-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 23.27.110.54 - - [03/May/2025:23:55:40 -0400] "GET /wp-content/uploads/typehub/custom/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:41 -0400] "GET /wp-content/plugins/rencontre/inc/photo_import/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:41 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:41 -0400] "GET /wp-content/plugins/pwnd-1/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:42 -0400] "GET /.tmb/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:42 -0400] "GET /wp-content/plugins/fix/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:55:42 -0400] "GET /includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:43 -0400] "GET /themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 23.27.110.54 - - [03/May/2025:23:55:43 -0400] "GET /wp-includes/js/tinymce/plugins/paste/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:43 -0400] "GET /wp-content/plugins/sid/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:44 -0400] "GET /templates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:44 -0400] "GET /wp-includes/block-supports/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:44 -0400] "GET /admin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 23.27.110.54 - - [03/May/2025:23:55:45 -0400] "GET /cache/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:55:45 -0400] "GET /files-and-directories-in-linux/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:46 -0400] "GET /filemanager/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 23.27.110.54 - - [03/May/2025:23:55:46 -0400] "GET /wp-includes/js/tinymce/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:46 -0400] "GET /modules/simpletest/tests/themes/test_basetheme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:55:47 -0400] "GET /wp-includes/Text/Diff/Engine/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:47 -0400] "GET /wp-content/themes/travelscape/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:50 -0400] "GET /wp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:50 -0400] "GET /wp-includes/js/tinymce/plugins/directionality/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:55:50 -0400] "GET /files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:50 -0400] "GET /wp-includes/rest-api/search/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:51 -0400] "GET /wp-includes/js/tinymce/plugins/compat3x/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:51 -0400] "GET /wp-content/plugins/erin/yani/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:51 -0400] "GET /wp-includes/block-patterns/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:52 -0400] "GET /wp-content/themes/Avada/includes/lib/inc/fusion-app/assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:55:52 -0400] "GET /wp-includes/style-engine/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:55:52 -0400] "GET /wp-content/plugins/wp-help/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:55:52 -0400] "GET /wp-includes/js/tinymce/plugins/compat3x/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:53 -0400] "GET /wp-content/plugins/classic-editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:53 -0400] "GET /wp-content/themes/twentytwentyone/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:53 -0400] "GET /wp-content/uploads-webpc/wp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:54 -0400] "GET /wp-content/plugins/simple/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:54 -0400] "GET /wp-includes/Requests/src/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:54 -0400] "GET /wp-content/themes/twenty/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:55 -0400] "GET /wp-content/banners/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:55 -0400] "GET /wp-content/plugins/elementor/modules/floating-buttons/classes/render/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:55 -0400] "GET /wp-content/themes/twentytwentytwo/templates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 23.27.110.54 - - [03/May/2025:23:55:55 -0400] "GET /wp-admin/css/wp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:56 -0400] "GET /backup/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:56 -0400] "GET /wp-content/plugins/wp-file-manager/lib/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:55:56 -0400] "GET /wp-includes/blocks/paragraph/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:57 -0400] "GET /wp-content/plugins/elementor/assets/js/packages/editor-app-bar/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:55:57 -0400] "GET /modules/mod_footer/tmpl/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:55:57 -0400] "GET /wp-includes/SimplePie/HTTP/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:58 -0400] "GET /x/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:58 -0400] "GET /wp-content/plugins/olympus-google-fonts/assets/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:55:58 -0400] "GET /wp-includes/css/dist/nux/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 23.27.110.54 - - [03/May/2025:23:55:59 -0400] "GET /wp-content/themes/aahana/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:55:59 -0400] "GET /wp-includes/js/tinymce/plugins/lists/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:55:59 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/img/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:00 -0400] "GET /cn/wp-content/themes/twentytwentyone/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:00 -0400] "GET /wp-content/plugins/boldgrid-backup-premium/vendor/aws/aws-sdk-php/src/data/elasticmapreduce/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:56:00 -0400] "GET /wp-content/themes/evita/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 23.27.110.54 - - [03/May/2025:23:56:00 -0400] "GET /site/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:01 -0400] "GET /wp-includes/sitemaps/wp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:56:01 -0400] "GET /cgi-bin/cgi-bin/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:01 -0400] "GET /wp-content/ID3/img/img/block/wp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:01 -0400] "GET /ccx/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:02 -0400] "GET /themes/zMousse/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:56:02 -0400] "GET /wp-includes/theme-compat/wp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:56:02 -0400] "GET /wp-includes/SimplePie/Decode/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:03 -0400] "GET /ludes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:03 -0400] "GET /r/includes/external/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:56:03 -0400] "GET /wordpress/wp-content/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:03 -0400] "GET /bk/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:56:04 -0400] "GET /wordpress/update/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:04 -0400] "GET /old/update/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:04 -0400] "GET /blog/wp-content/plugins/fix/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:04 -0400] "GET /modules/mod_ariimageslidersa/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:05 -0400] "GET /wp-content/plugins/background-image-cropper/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:56:05 -0400] "GET /templates/beez3/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:06 -0400] "GET /bootstrap/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:06 -0400] "GET /wp-content/plugins/ienroku/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:06 -0400] "GET /wp-content/plugins/xobsqxl/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:06 -0400] "GET /wp-content/plugins/achdxhv/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:56:07 -0400] "GET /verificacion/templates/beez3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:07 -0400] "GET /sad/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:56:07 -0400] "GET /wp-includes/ixr/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:08 -0400] "GET /wp-content/plugins/seox/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:08 -0400] "GET /cache/h/a/h/e/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:08 -0400] "GET /wp-content/plugins/azra-tn/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:08 -0400] "GET /wp-includes/sodium_compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:56:09 -0400] "GET /wp-content/plugins/3asba/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:09 -0400] "GET /wp-content/uploads/gravity_forms/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:56:09 -0400] "GET /wp-includes/blocks/social-links/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:10 -0400] "GET /update/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:10 -0400] "GET /wordpress/wp-content/themes/twentytwenty/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:10 -0400] "GET /wp-content/plugins/email-subscribers/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 23.27.110.54 - - [03/May/2025:23:56:11 -0400] "GET /wp-content/plugins/ultimate-addons-for-gutenberg/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:11 -0400] "GET /wp-content/plugins/litespeed-cache/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:12 -0400] "GET /acme-challenge/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:12 -0400] "GET /cgi_bin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:56:12 -0400] "GET /wp-content/plugins/exe/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:12 -0400] "GET /user/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:13 -0400] "GET /moodle/user/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:13 -0400] "GET /controllers/wizard/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:56:13 -0400] "GET /proyectoweb/modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:13 -0400] "GET /wp-content/plugins/core-plugin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:14 -0400] "GET /wp-content/themes/hideo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:14 -0400] "GET /wp-content/plugins/wp-catcher/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:14 -0400] "GET /portal/modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:15 -0400] "GET /wp-includes/sodium_compat/src/Core/Curve25519/Ge/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:15 -0400] "GET /wp-content/plugins/gizitib/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:15 -0400] "GET /wp-content/plugins/ioptimization/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:16 -0400] "GET /extracte_wordprees/dirfunc/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:16 -0400] "GET /wp-content/plugins/rex/l/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:16 -0400] "GET /rex/l/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:16 -0400] "GET /l/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:17 -0400] "GET /wordpress/wp-admin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 23.27.110.54 - - [03/May/2025:23:56:17 -0400] "GET /wordpress/wp-includes/style-engine/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:56:17 -0400] "GET /wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:18 -0400] "GET /Files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:18 -0400] "GET /wp-content/Files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:18 -0400] "GET /wordpress/Files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 23.27.110.54 - - [03/May/2025:23:56:18 -0400] "GET /wp-includes/Text/Files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:19 -0400] "GET /wordpress/wp-content/plugins/rex/l/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:19 -0400] "GET /wordpress/wp-includes/Text/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:19 -0400] "GET /wp-includes/Files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:20 -0400] "GET /admin/Files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:56:20 -0400] "GET /static/Files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:20 -0400] "GET /www/modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 23.27.110.54 - - [03/May/2025:23:56:20 -0400] "GET /newtab/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:56:21 -0400] "GET /cgi-sys/ HTTP/1.1" 403 1242 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:56:21 -0400] "GET /includes/external/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:56:21 -0400] "GET /js/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:22 -0400] "GET /pki-validation/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:22 -0400] "GET /block-supports/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:22 -0400] "GET /default/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:22 -0400] "GET /pomo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:56:23 -0400] "GET /css/dist/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:56:23 -0400] "GET /block-patterns/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:23 -0400] "GET /themes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:24 -0400] "GET /media/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:24 -0400] "GET /Requests/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 23.27.110.54 - - [03/May/2025:23:56:24 -0400] "GET /maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:24 -0400] "GET /Text/Diff/Renderer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:25 -0400] "GET /SimplePie/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:26 -0400] "GET /css/colors/blue/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:26 -0400] "GET /js/tinymce/skins/lightgray/fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:26 -0400] "GET /widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:26 -0400] "GET /themes/scapeshot/includes/settings/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:27 -0400] "GET /atomic/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:56:27 -0400] "GET /themes/wp-pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 23.27.110.54 - - [03/May/2025:23:56:27 -0400] "GET /theme-compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:27 -0400] "GET /aa/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:56:28 -0400] "GET /network/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:28 -0400] "GET /customize/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:29 -0400] "GET /certificates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:29 -0400] "GET /blocks/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:29 -0400] "GET /IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:30 -0400] "GET /test/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:30 -0400] "GET /ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 23.27.110.54 - - [03/May/2025:23:56:30 -0400] "GET /uploads/2021/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:31 -0400] "GET /rest-api/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:31 -0400] "GET /themes/bltm/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:31 -0400] "GET /themes/newstoday/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:31 -0400] "GET /css/dist/editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:32 -0400] "GET /css/colors/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:32 -0400] "GET /images/crystal/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:32 -0400] "GET /js/plupload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 23.27.110.54 - - [03/May/2025:23:56:32 -0400] "GET /maint/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:33 -0400] "GET /Requests/Transport/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:33 -0400] "GET /phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:33 -0400] "GET /assets/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 23.27.110.54 - - [03/May/2025:23:56:34 -0400] "GET /themes/twenty/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:36 -0400] "GET /languages/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:36 -0400] "GET /system/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 23.27.110.54 - - [03/May/2025:23:56:37 -0400] "GET /well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:37 -0400] "GET /informasi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 23.27.110.54 - - [03/May/2025:23:56:37 -0400] "GET /rest-api/fields/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:38 -0400] "GET /uploads/2020/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:38 -0400] "GET /themes/rehub-theme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:39 -0400] "GET /phpmailer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 23.27.110.54 - - [03/May/2025:23:56:39 -0400] "GET /Requests/Exception/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:39 -0400] "GET /products/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:40 -0400] "GET /themes/fitnessbase/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:40 -0400] "GET /themes/twentyseventeen/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:40 -0400] "GET /joomla/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:41 -0400] "GET /images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:41 -0400] "GET /themes/calmly/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 23.27.110.54 - - [03/May/2025:23:56:42 -0400] "GET /php-compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:42 -0400] "GET /Feature/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:42 -0400] "GET /docs/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 23.27.110.54 - - [03/May/2025:23:56:43 -0400] "GET /images/media/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:56:43 -0400] "GET /themes/travelscape/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:43 -0400] "GET /font/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:44 -0400] "GET /Requests/Utility/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:56:44 -0400] "GET /tmp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:44 -0400] "GET /local/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:47 -0400] "GET /js/jcrop/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:47 -0400] "GET /themes/alera/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 23.27.110.54 - - [03/May/2025:23:56:47 -0400] "GET /assets/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 23.27.110.54 - - [03/May/2025:23:56:48 -0400] "GET /themes/hello-element/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 23.27.110.54 - - [03/May/2025:23:56:48 -0400] "GET /blocks/audio/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:48 -0400] "GET /blue/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 23.27.110.54 - - [03/May/2025:23:56:49 -0400] "GET /themes/finley/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:49 -0400] "GET /themes/twentytwenty/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:49 -0400] "GET /themes/wp-classic/inc/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:49 -0400] "GET /upload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 23.27.110.54 - - [03/May/2025:23:56:50 -0400] "GET /js/tinymce/utils/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:50 -0400] "GET /themes/seotheme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:50 -0400] "GET /language/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 23.27.110.54 - - [03/May/2025:23:56:51 -0400] "GET /.well-known/pkivalidation/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 23.27.110.54 - - [03/May/2025:23:56:51 -0400] "GET /xt/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 178.254.10.139 - - [04/May/2025:00:29:15 -0400] "GET /.env HTTP/1.1" 403 1242 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 178.254.10.139 - - [04/May/2025:00:29:16 -0400] "POST / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 178.254.10.139 - - [04/May/2025:00:43:27 -0400] "GET / HTTP/1.1" 200 0 "-" "python-requests/2.25.1" 178.254.10.139 - - [04/May/2025:00:43:28 -0400] "GET /_profiler/empty/search/results HTTP/1.1" 200 0 "-" "python-requests/2.25.1" 170.205.30.127 - - [04/May/2025:01:37:47 -0400] "GET /sts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:09 -0400] "GET /Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php%20=%20%3E%3E%20shell%20no%20work HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:10 -0400] "GET /wp-admin/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php%20=%20%3E%3E%20shell%20no%20work HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:10 -0400] "GET /wp-content/Deadcode1975xxxxxxxxxxxxxxxxxxxxxxxxxxxx.php%20=%20%3E%3E%20shell%20no%20work HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:10 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:11 -0400] "GET /0byte.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:11 -0400] "GET /wp-content/fw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:13 -0400] "GET /sym.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:13 -0400] "GET /sym403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:13 -0400] "GET /xl.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:14 -0400] "GET /symlink.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:14 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:14 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:15 -0400] "GET /403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:15 -0400] "GET /up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:16 -0400] "GET /c99.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:16 -0400] "GET /xxx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:16 -0400] "GET /ok.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:17 -0400] "GET /0.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:17 -0400] "GET /x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:17 -0400] "GET /xx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:18 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:18 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:19 -0400] "GET /3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:19 -0400] "GET /4.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:19 -0400] "GET /5.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:20 -0400] "GET /6.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:20 -0400] "GET /7.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:20 -0400] "GET /8.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:21 -0400] "GET /9.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:21 -0400] "GET /10.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:21 -0400] "GET /a.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:22 -0400] "GET /z.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:22 -0400] "GET /e.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:22 -0400] "GET /r.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:23 -0400] "GET /t.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:23 -0400] "GET /y.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:24 -0400] "GET /u.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:24 -0400] "GET /i.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:24 -0400] "GET /o.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:25 -0400] "GET /p.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:25 -0400] "GET /q.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:26 -0400] "GET /s.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:26 -0400] "GET /d.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:26 -0400] "GET /f.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:27 -0400] "GET /g.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:27 -0400] "GET /h.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:28 -0400] "GET /j.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:28 -0400] "GET /k.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:28 -0400] "GET /l.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:29 -0400] "GET /m.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:29 -0400] "GET /w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:29 -0400] "GET /v.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:30 -0400] "GET /n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:30 -0400] "GET /b.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:30 -0400] "GET /c.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:31 -0400] "GET /wp-wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:31 -0400] "GET /priv8.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:31 -0400] "GET /minimo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:31 -0400] "GET /V3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:32 -0400] "GET /V5.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:32 -0400] "GET /www.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:32 -0400] "GET /100.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:33 -0400] "GET /777.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:33 -0400] "GET /defau1t.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:33 -0400] "GET /xox.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:34 -0400] "GET /new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:34 -0400] "GET /wi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:34 -0400] "GET /mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:35 -0400] "GET /root.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:35 -0400] "GET /nee.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:35 -0400] "GET /ws.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:36 -0400] "GET /lol.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:36 -0400] "GET /87.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:36 -0400] "GET /7yn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:36 -0400] "GET /haxor.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:37 -0400] "GET /13.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:37 -0400] "GET /FoxWSOv1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:37 -0400] "GET /alf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:38 -0400] "GET /bb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:38 -0400] "GET /lf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:38 -0400] "GET /WSO.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:38 -0400] "GET /hello.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:39 -0400] "GET /if.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:39 -0400] "GET /kk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:39 -0400] "GET /mrjn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:40 -0400] "GET /kn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:40 -0400] "GET /3301.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 13.82.1.162 - - [04/May/2025:01:51:40 -0400] "GET /leaf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 43.155.140.157 - - [04/May/2025:04:13:36 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 43.205.98.73 - - [04/May/2025:09:40:15 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:16 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:16 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:16 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:16 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:17 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:17 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:17 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:18 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.205.98.73 - - [04/May/2025:09:40:18 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 43.135.185.59 - - [04/May/2025:10:11:21 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 54.172.23.145 - - [04/May/2025:12:12:56 -0400] "GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:20 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:20 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:21 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:21 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:21 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:21 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:22 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:22 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:22 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [04/May/2025:12:14:23 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 54.36.148.89 - - [04/May/2025:14:19:41 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 51.222.253.9 - - [04/May/2025:14:19:42 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 43.166.250.187 - - [04/May/2025:16:54:52 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 51.222.253.7 - - [04/May/2025:17:27:02 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 54.172.23.145 - - [04/May/2025:18:16:09 -0400] "GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:13 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:13 -0400] "GET /index/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:14 -0400] "GET /.ll/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:14 -0400] "GET /.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:14 -0400] "GET /wp-content/plugins/async-upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:14 -0400] "GET /new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:14 -0400] "GET /pages.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:15 -0400] "GET /wp-editor.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:15 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:15 -0400] "GET /ge.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:05:15 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:05:16 -0400] "GET /templatesdex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:16 -0400] "GET /click.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:16 -0400] "GET /.lu/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:16 -0400] "GET /mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:05:16 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:17 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:17 -0400] "GET /wp-mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:17 -0400] "GET /randkeyword.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:17 -0400] "GET /wp-content/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:05:18 -0400] "GET /lock.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:05:18 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:18 -0400] "GET /ws.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:19 -0400] "GET /x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:05:19 -0400] "GET /login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:19 -0400] "GET /eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:19 -0400] "GET /wp-admin/images/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:20 -0400] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:20 -0400] "GET /test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:05:20 -0400] "GET /wp-admin/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:21 -0400] "GET /cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:21 -0400] "GET /baxa1.phP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:05:21 -0400] "GET /wp-admin/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:21 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:22 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:22 -0400] "GET /themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:22 -0400] "GET /wp-includes/ID3/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:22 -0400] "GET /wp-includes/Text/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:05:23 -0400] "GET /wp-admin/network/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:23 -0400] "GET /rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:23 -0400] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:23 -0400] "GET /wp-admin/js/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:23 -0400] "GET /.well-known/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:05:24 -0400] "GET /chosen.phppload HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:24 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:24 -0400] "GET /sxx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:24 -0400] "GET /wp-admin/maint/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:05:25 -0400] "GET /baxa1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:25 -0400] "GET /classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:05:25 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:25 -0400] "GET /about/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:26 -0400] "GET /user/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:26 -0400] "GET /wp-content/themes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:26 -0400] "GET /wp-includes/css/dist/niil.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:26 -0400] "GET /moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:05:27 -0400] "GET /wp-admin/css/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:27 -0400] "GET /wp-admin/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:27 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:27 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:28 -0400] "GET /pgs.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:28 -0400] "GET /shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:29 -0400] "GET /mjq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:29 -0400] "GET /content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:29 -0400] "GET /readme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:05:29 -0400] "GET /litespeed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:30 -0400] "GET /bypass.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:30 -0400] "GET /.qiodeme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:30 -0400] "GET /ad.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:05:30 -0400] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:30 -0400] "GET /wp-content/upgrade/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:05:31 -0400] "GET /df.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:31 -0400] "GET /jindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:31 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:31 -0400] "GET /Files/Mo0n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:32 -0400] "GET /wp-content/mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:32 -0400] "GET /bv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:32 -0400] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:32 -0400] "GET /403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:33 -0400] "GET /bk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:05:33 -0400] "GET /wp-includes/fonts/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:33 -0400] "GET /wp-content/languages/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:33 -0400] "GET /wp-atom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:34 -0400] "GET /hj.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:34 -0400] "GET /sym.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:34 -0400] "GET /lp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:05:34 -0400] "GET /Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:34 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:35 -0400] "GET /yt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:35 -0400] "GET /wp-conflg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:35 -0400] "GET /x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:35 -0400] "GET /hehehehe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:05:35 -0400] "GET /.github/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:05:36 -0400] "GET /default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:36 -0400] "GET /bn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:05:36 -0400] "GET /wordpress/update/wpupex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:36 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:05:36 -0400] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:05:37 -0400] "GET /ini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:05:37 -0400] "GET /wp-includes/rest-api/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:05:37 -0400] "GET /shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:37 -0400] "GET /aa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:05:37 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:05:38 -0400] "GET /wp-admin/includes/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:38 -0400] "GET /wp-includes/ID3/about.php/wp-content/x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:38 -0400] "GET /wpn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:38 -0400] "GET /wp-admin/css/colors/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:05:38 -0400] "GET /wp-admin/js/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:39 -0400] "GET /wp-includes/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:39 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:39 -0400] "GET /wp-content/themes/xc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:39 -0400] "GET /baxa1.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:39 -0400] "GET /av.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:05:40 -0400] "GET /network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:05:40 -0400] "GET /wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:40 -0400] "GET /wp-content/upgrade/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:40 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:40 -0400] "GET /wp-includes/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:41 -0400] "GET /wp-content/Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:41 -0400] "GET /vv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:41 -0400] "GET /wp-includes/style-engine/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:41 -0400] "GET /wp-user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:05:41 -0400] "GET /wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:42 -0400] "GET /.well-known/acme-challenge/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:42 -0400] "GET /assets/css/403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:42 -0400] "GET /error.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:42 -0400] "GET /ff.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:42 -0400] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:42 -0400] "GET /wp-content/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:43 -0400] "GET /credits.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:05:43 -0400] "GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:43 -0400] "GET /wp-includes/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:43 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:43 -0400] "GET /wp-includes/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:05:44 -0400] "GET /wp-admin/maint/flower.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:44 -0400] "GET /wp-includes/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:05:44 -0400] "GET /wp-tinymce.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:05:44 -0400] "GET /wp-links.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:44 -0400] "GET /css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:05:45 -0400] "GET /retu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:45 -0400] "GET /aw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:45 -0400] "GET /lv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:45 -0400] "GET /wp-includes/block-patterns/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:45 -0400] "GET /dr.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:45 -0400] "GET /randkeyword.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:46 -0400] "GET /wp-admin/Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:46 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:05:46 -0400] "GET /ay.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:05:46 -0400] "GET /wordpress/wp-admin/wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:05:46 -0400] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:47 -0400] "GET /wp-content/plugins/ioptimization/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:47 -0400] "GET /wp-content/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:47 -0400] "GET /wp-admin/network/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:47 -0400] "GET /wp-admin/defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:48 -0400] "GET /mini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:48 -0400] "GET /yy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:48 -0400] "GET /.well-known/pki-validation/eew.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:48 -0400] "GET /wp-includes/IXR/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:49 -0400] "GET /log.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:49 -0400] "GET /tr.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:49 -0400] "GET /wp-content/themes/pridmag/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:49 -0400] "GET /wp-includes/css/dist/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:49 -0400] "GET /byp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:05:49 -0400] "GET /aq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:05:50 -0400] "GET /yu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:50 -0400] "GET /gt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:50 -0400] "GET /duck.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:50 -0400] "GET /op.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:50 -0400] "GET /l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:51 -0400] "GET /doc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:51 -0400] "GET /update/wpupex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:51 -0400] "GET /m.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:51 -0400] "GET /2index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:51 -0400] "GET /wp-content/themes/sky-pro/js.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:52 -0400] "GET /ayk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:52 -0400] "GET /alfanew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:05:52 -0400] "GET /wp-includes/wp-class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:05:52 -0400] "GET /er.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:52 -0400] "GET /wp-includes/PHPMailer/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:52 -0400] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:53 -0400] "GET /ssa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:05:53 -0400] "GET /.well-known/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:05:53 -0400] "GET /hardenX.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:05:53 -0400] "GET /.qiofetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:53 -0400] "GET /function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:54 -0400] "GET /wp-content/x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:05:54 -0400] "GET /wp-admin/maint/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:54 -0400] "GET /cc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:05:55 -0400] "GET /images/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:55 -0400] "GET /new2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:55 -0400] "GET /class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:55 -0400] "GET /wp-content/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:56 -0400] "GET /ok.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:56 -0400] "GET /wp-content/mu-plugins/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:56 -0400] "GET /backup/sid.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:56 -0400] "GET /ki.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:05:56 -0400] "GET /wp-includes/assets/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:57 -0400] "GET /.well-known/acme-challenge/upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:57 -0400] "GET /about/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:57 -0400] "GET /wp-admin/images/wp-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:57 -0400] "GET /wp-content/plugins/cp-pro/js.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:57 -0400] "GET /wp-includes/css/dist/components/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:05:58 -0400] "GET /wp-includes/customize/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:58 -0400] "GET /tt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:58 -0400] "GET /uu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:05:58 -0400] "GET /wp-admin/x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:58 -0400] "GET /.well-known/pki-validation/xmrlpc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:05:59 -0400] "GET /dir.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:59 -0400] "GET /wp-admin/options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:05:59 -0400] "GET /.well-known/acme-challenge/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:05:59 -0400] "GET /xx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:00 -0400] "GET /css/xa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:00 -0400] "GET /sk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:00 -0400] "GET /wordpress/wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:00 -0400] "GET /item.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:00 -0400] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:06:01 -0400] "GET /wordpress/wp-includes/wp-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:01 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:06:01 -0400] "GET /.well-known/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:01 -0400] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:02 -0400] "GET /bgf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:02 -0400] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:02 -0400] "GET /an.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:02 -0400] "GET /wp-includes/pomo/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:06:02 -0400] "GET /wp-content/plugins/core/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:03 -0400] "GET /test.php/wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:03 -0400] "GET /ova.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:06:03 -0400] "GET /plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:03 -0400] "GET /wp-content/themes/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:03 -0400] "GET /worksec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:06:03 -0400] "GET /options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:04 -0400] "GET /wp-blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:04 -0400] "GET /wp-info.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:04 -0400] "GET /la.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:04 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:04 -0400] "GET /wp-includes/fonts/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:05 -0400] "GET /wp-content/plugins/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:05 -0400] "GET /wp-includes/rest-api/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:05 -0400] "GET /as.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:06:05 -0400] "GET /images.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:05 -0400] "GET /up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:06 -0400] "GET /index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:06 -0400] "GET /wp-content/plugins/wp-help/mini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:06 -0400] "GET /indeks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:06 -0400] "GET /wp-content/plugins/seoo/xynz1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:06 -0400] "GET /wp-content/tmpls.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:07 -0400] "GET /wp-content/themes/travel/issue.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:07 -0400] "GET /wp-admin/js/widgets/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:07 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/udd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:07 -0400] "GET /wp-includes/Requests/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:08 -0400] "GET /wp-includes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:08 -0400] "GET /retu11.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:08 -0400] "GET /back.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:06:08 -0400] "GET /wp-content/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:08 -0400] "GET /wp-head.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:09 -0400] "GET /images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:09 -0400] "GET /wp-content/shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:09 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:09 -0400] "GET /system_log.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:09 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:10 -0400] "GET /wp-admin/css/colors/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:10 -0400] "GET /rt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:10 -0400] "GET /atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:10 -0400] "GET /wp-admin/maint/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:11 -0400] "GET /.well-known/acme-challenge/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:11 -0400] "GET /admin/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:11 -0400] "GET /wp-content/themes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:11 -0400] "GET /wp-admin/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:06:11 -0400] "GET /.well-known/pki-validation/.qiodetme.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:11 -0400] "GET /makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:12 -0400] "GET /hjk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:12 -0400] "GET /wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:12 -0400] "GET /ac.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:12 -0400] "GET /w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:12 -0400] "GET /inc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:13 -0400] "GET /wp-includes/js/plupload/jquery.Jcrop.min.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:13 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:06:13 -0400] "GET /wp-admin/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:13 -0400] "GET /wp-admin/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:06:13 -0400] "GET /wp-admin/css/about.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:14 -0400] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:14 -0400] "GET /install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:14 -0400] "GET /wp-content/plugins/seox/randkeyword.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:14 -0400] "GET /wp-content/plugins/pwnd/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:15 -0400] "GET /index/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:06:15 -0400] "GET /aj.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:15 -0400] "GET /wp-header.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:15 -0400] "GET /wp-admin/includes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:15 -0400] "GET /hui.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:16 -0400] "GET /oo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:16 -0400] "GET /data.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:16 -0400] "GET /wp-includes/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:06:16 -0400] "GET /wp-admin/maint/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:17 -0400] "GET /randkeyword.PhP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:06:17 -0400] "GET /ss.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:06:17 -0400] "GET /xml.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:17 -0400] "GET /wp-admin/images/lufix.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:17 -0400] "GET /customize.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:18 -0400] "GET /a.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:18 -0400] "GET /wp-content/item.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:18 -0400] "GET /ui.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:18 -0400] "GET /b.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:06:18 -0400] "GET /wp-includes/css/dist/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:19 -0400] "GET /images/class-config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:19 -0400] "GET /as/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:06:19 -0400] "GET /kl.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:06:19 -0400] "GET /wp-admin/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:19 -0400] "GET /wsoyanzfv3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:06:20 -0400] "GET /wp-admin/Files/Mo0n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:20 -0400] "GET /index/gu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:20 -0400] "GET /lk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:20 -0400] "GET /mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:20 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:21 -0400] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:21 -0400] "GET /update/wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:06:21 -0400] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:21 -0400] "GET /ioxi002.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:21 -0400] "GET /wp-content/themes/aahana/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:22 -0400] "GET /wp-includes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:06:22 -0400] "GET /mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:22 -0400] "GET /wp-content/themes/seotheme/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:22 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:22 -0400] "GET /wp-trackback.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:23 -0400] "GET /cgi-bin/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:23 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:23 -0400] "GET /wp-includes/wp-atom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:06:23 -0400] "GET /.well-known/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:23 -0400] "GET /fm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:24 -0400] "GET /wp-cron.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:24 -0400] "GET /sidwsi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:06:24 -0400] "GET /wpupp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:25 -0400] "GET /upmdxpcz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:25 -0400] "GET /wp-admin/includes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:25 -0400] "GET /blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:25 -0400] "GET /wp-admin/css/colors/coffee/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:06:25 -0400] "GET /yanz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:26 -0400] "GET /inputs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:26 -0400] "GET /wp-includes/Requests/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:26 -0400] "GET /cgi-bin/index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:06:26 -0400] "GET /wp-includes/makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:26 -0400] "GET /wp-includes/block-supports/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:27 -0400] "GET /wp-includes/css/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:27 -0400] "GET /xpfkcrpp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:06:27 -0400] "GET /wp-content/uploads/2023/a22.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:27 -0400] "GET /alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:28 -0400] "GET /wp-includes/images/smilies/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:28 -0400] "GET /wordpress/update/wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:28 -0400] "GET /wp-admin/user/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:28 -0400] "GET /l.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:29 -0400] "GET /wp-admin/images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:29 -0400] "GET /jp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:06:29 -0400] "GET /.well-known/acme-challenge/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:06:30 -0400] "GET /wp-admin/maint/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:30 -0400] "GET /wp-admin/css/colors/coffee/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:30 -0400] "GET /wp-set.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:30 -0400] "GET /link.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:30 -0400] "GET /.well-known/pki-validation/cloud.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:31 -0400] "GET /.well-known/acme-challenge/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:31 -0400] "GET /worm0.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:31 -0400] "GET /admin/upload/css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:31 -0400] "GET /web.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:32 -0400] "GET /bak.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:06:32 -0400] "GET /wp-content/plugins/azra-tn/wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:32 -0400] "GET /img/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:32 -0400] "GET /license.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:33 -0400] "GET /wp-signup.php?Fox=sQFLZ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:33 -0400] "GET /wp-content/themes/alera/alpha.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:33 -0400] "GET /13.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:33 -0400] "GET /wp-content/plugins/work-list/lang.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:06:33 -0400] "GET /upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:34 -0400] "GET /uzkeerfe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:34 -0400] "GET /fw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:34 -0400] "GET /contact.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:06:35 -0400] "GET /wp-content/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:35 -0400] "GET /wp-includes/blocks/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:06:35 -0400] "GET /ynz.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:35 -0400] "GET /cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:36 -0400] "GET /ymhrwpmq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:36 -0400] "GET /contents.php/lv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:36 -0400] "GET /yjsmnati.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:36 -0400] "GET /cgi-bin/cloud.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:37 -0400] "GET /wp-links-opml.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:37 -0400] "GET /index.php?x=ooo HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:37 -0400] "GET /wp-content/banners/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:37 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:37 -0400] "GET /wp-admin/network/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:38 -0400] "GET /wp-admin/images/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:38 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:38 -0400] "GET /hehe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:38 -0400] "GET /wp-content/plugins/erin/pgs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:06:38 -0400] "GET /wp-content/plugins/linkpreview/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:39 -0400] "GET /css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:39 -0400] "GET /wp-includes/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:39 -0400] "GET /wp-content/plugins/simple/simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:06:39 -0400] "GET /lufix.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:39 -0400] "GET /about.php?525 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:39 -0400] "GET /wp-admin/images/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:40 -0400] "GET /wp-content/plugins/seoplugins/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:06:40 -0400] "GET /tinyfilemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:06:40 -0400] "GET /wp-admin/images/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:40 -0400] "GET /cgi-bin/file.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:41 -0400] "GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:41 -0400] "GET /wp-admin/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:41 -0400] "GET /files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:41 -0400] "GET /ms.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:41 -0400] "GET /insert_activity_db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:42 -0400] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:42 -0400] "GET /.well-known/acme-challenge/makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:42 -0400] "GET /update/gely.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:42 -0400] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:43 -0400] "GET /text.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:06:43 -0400] "GET /.well-known/pki-validation/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:43 -0400] "GET /wp-includes/customize/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:43 -0400] "GET /saka.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:44 -0400] "GET /.well-known/acme-challenge/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:44 -0400] "GET /1index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:44 -0400] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:44 -0400] "GET /wp-admin/user/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:44 -0400] "GET /crack.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:06:45 -0400] "GET /.well-known/acme-challenge/mariju.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:45 -0400] "GET /bb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:45 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:46 -0400] "GET /wp-includes/js/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:06:46 -0400] "GET /wp-admin/admin-ajax.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:46 -0400] "GET /components/com_joomdle/assets/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:46 -0400] "GET /cmd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:06:46 -0400] "GET /upload_shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:47 -0400] "GET /var/www/html/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:47 -0400] "GET /uploads/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:47 -0400] "GET /files/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:47 -0400] "GET /webdb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:47 -0400] "GET /xp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:48 -0400] "GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:06:48 -0400] "GET /bs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:48 -0400] "GET /update-core.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:48 -0400] "GET /wp-includes/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:48 -0400] "GET /wp-includes/blocks/site-title/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:06:49 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:49 -0400] "GET /.well-known/acme-challenge/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:49 -0400] "GET /.well-known/pki-validation/2index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:06:49 -0400] "GET /assets/images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:50 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:50 -0400] "GET /adminer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:06:50 -0400] "GET /wp-content/plugins/ioxi/alfa-ioxi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:50 -0400] "GET /wp-admin/css/colors/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:06:50 -0400] "GET /wp-admin/user/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:06:51 -0400] "GET /htaccess.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:06:51 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:51 -0400] "GET /.well-known/acme-challenge/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:06:51 -0400] "GET /cgi-bin/cgi-bin/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:51 -0400] "GET /cgi-bin/radio.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:06:52 -0400] "GET /wp-ncludes/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:52 -0400] "GET /.qiodetme.php/goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:52 -0400] "GET /wp-content/themes/hello-element/footer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:52 -0400] "GET /wp-admin/maint/min.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:52 -0400] "GET /wp-admin/includes/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:53 -0400] "GET /wp-admin/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:53 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:53 -0400] "GET /wp-content/uploads/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:53 -0400] "GET /wp-includes/wp-widgets.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:54 -0400] "GET /.well-known/pki-validation/sxx.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:54 -0400] "GET /packed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:06:54 -0400] "GET /max.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:54 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:54 -0400] "GET /n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:55 -0400] "GET /saka.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:06:55 -0400] "GET /wp-content/uploads/2023/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:55 -0400] "GET /marijuana.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:06:55 -0400] "GET /.well-known/acme-challenge/edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:55 -0400] "GET /wp-content/plugins/Core-EconX/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:06:56 -0400] "GET /wp-includes/certificates/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:56 -0400] "GET /.well-known/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:56 -0400] "GET /wp-content/uploads/GzyYU.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:56 -0400] "GET /wp-includes/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:56 -0400] "GET /wp-admin/js/widgets/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:57 -0400] "GET /wp-admin/network/gzak2w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:06:57 -0400] "GET /components/com_jea/views/form/tmpl/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:06:57 -0400] "GET /test/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:06:57 -0400] "GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:06:57 -0400] "GET /st.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:06:58 -0400] "GET /assets/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:58 -0400] "GET /wp-add.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:59 -0400] "GET /wp-content/uploads/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:06:59 -0400] "GET /0x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:59 -0400] "GET /.well-known/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:59 -0400] "GET /wp-admin/images/sidebarh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:06:59 -0400] "GET /nav-menus.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:00 -0400] "GET /wp-content/plugins/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:00 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:00 -0400] "GET /cgi-bin/plugins.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:00 -0400] "GET /worksec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:01 -0400] "GET /.well-known/pki-validation/index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:07:01 -0400] "GET /lock360.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:01 -0400] "GET /wp-admin/user/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:01 -0400] "GET /wp-content/plugins/Core-Econ/upH.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:02 -0400] "GET /pegi.PhP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:02 -0400] "GET /cgi-bin/mariju.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:02 -0400] "GET /wp-includes/blocks/button/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:02 -0400] "GET /wp-content/plugins/apikey/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:03 -0400] "GET /css/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:03 -0400] "GET /wp-content/uploads/2022/bidlbdgp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:03 -0400] "GET /wp-content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:03 -0400] "GET /components/lig.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:03 -0400] "GET /wp-content/updates.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:04 -0400] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:04 -0400] "GET /cgi-bin/admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:07:04 -0400] "GET /.well-known/acme-challenge/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:07:04 -0400] "GET /network.php4 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:04 -0400] "GET /wp-admin/network/class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:04 -0400] "GET /.well-known/pki-validation/webdb.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:07:05 -0400] "GET /delpaths.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:05 -0400] "GET /wp-admin/alfa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:05 -0400] "GET /wp-admin/css/colors/coffee/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:05 -0400] "GET /.well-known/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:05 -0400] "GET /cgi-bin/moon.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:06 -0400] "GET /wp-includes/block-supports/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:07:06 -0400] "GET /users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:07:06 -0400] "GET /.well-known/pki-validation/file.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:06 -0400] "GET /init.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:06 -0400] "GET /wp-includes/css/options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:07 -0400] "GET /wp-includes/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:07 -0400] "GET /wp-admin/images/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:07 -0400] "GET /wp-includes/SimplePie/Cache/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:07 -0400] "GET /widgets.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:07 -0400] "GET /cgi-bin/xdrwxeax.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:07 -0400] "GET /wp-includes/mani.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:08 -0400] "GET /.well-known/pki-validation/ssl.php?xsec=blocker HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:08 -0400] "GET /xl2023.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:08 -0400] "GET /.well-known/acme-challenge/license.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:08 -0400] "GET /wp-admin/network/index.php4 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:08 -0400] "GET /ova.php4https:/worldbdsm.net/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:09 -0400] "GET /css/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:09 -0400] "GET /.well-known/pki-validation/wp-sigunq.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:09 -0400] "GET /cjfuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:09 -0400] "GET /.well-known/functions.schedules.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:09 -0400] "GET /wzy.php?action=door123 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:10 -0400] "GET /.well-known/acme-challenge/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:10 -0400] "GET /.well-known/acme-challenge/doc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:10 -0400] "GET /wp-includes/packed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:10 -0400] "GET /product.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:10 -0400] "GET /.well-known/acme-challenge/blurbs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:11 -0400] "GET /wp-includes/certificates/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:11 -0400] "GET /wp-content/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:07:11 -0400] "GET /.well-known/pki-validation/doc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:07:11 -0400] "GET /checkbox.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:11 -0400] "GET /wp-includes/SimplePie/lig.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:12 -0400] "GET /.well-known/acme-challenge/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:12 -0400] "GET /wp-files.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:12 -0400] "GET /.well-known/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:12 -0400] "GET /black.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:12 -0400] "GET /wp-includes/Requests/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:07:13 -0400] "GET /wp-includes/mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:13 -0400] "GET /wp-load.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:13 -0400] "GET /buy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:13 -0400] "GET /.well-known/pki-validation/classwithtostring.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:14 -0400] "GET /word.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:14 -0400] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:07:14 -0400] "GET /wp-content/plugins/sid/sidwso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:14 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/fonts/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:14 -0400] "GET /wp-includes/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:07:15 -0400] "GET /wp-admin/css/colors/blue/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:15 -0400] "GET /.well-known/pki-validation/scripts.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:15 -0400] "GET /assets/images/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:15 -0400] "GET /wp-includes/fonts/parx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:16 -0400] "GET /gecko.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:16 -0400] "GET /cgi-bin/install.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:07:16 -0400] "GET /wp-includes/Text/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:07:17 -0400] "GET /wp-includes/block-patterns/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:17 -0400] "GET /modules/mod_footer/tmpl/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:17 -0400] "GET /wp-admin/wp-configs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:07:17 -0400] "GET /f0x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:17 -0400] "GET /templates/cassiopeia/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:18 -0400] "GET /.well-known/acme-challenge/iR7SzrsOUEP.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:18 -0400] "GET /wp-content/uploads/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:18 -0400] "GET /.well-known/acme-challenge/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:18 -0400] "GET /wp-includes/fonts/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:19 -0400] "GET /wp-includes/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:07:19 -0400] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:19 -0400] "GET /sh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:19 -0400] "GET /wp-admin/images/thumbs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:07:20 -0400] "GET /db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:20 -0400] "GET /wp-content/plugins/elementor/wp-wyrvg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:20 -0400] "GET /wp-includes/css/dist/editor/fxp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:20 -0400] "GET /wp-admin/network/back.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:20 -0400] "GET /wp-admin/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:21 -0400] "GET /wp-includes/customize/lmfi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:21 -0400] "GET /version.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:21 -0400] "GET /wp-content HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:21 -0400] "GET /wp-admin/wp-admin/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:21 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:22 -0400] "GET /wp-includes/IXR/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:22 -0400] "GET /wp-admin/css/colors/blue/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:07:22 -0400] "GET /wp-admin/images/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:23 -0400] "GET /wp-content/themes/pridmag/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:23 -0400] "GET /wp-admin/css/colors/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:23 -0400] "GET /.well-known/acme-challenge/aboudt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:24 -0400] "GET /wp-includes/certificates/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:07:24 -0400] "GET /mm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:24 -0400] "GET /wp-includes/css/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:24 -0400] "GET /indeex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:24 -0400] "GET /sys.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:07:25 -0400] "GET /wp-includes/customize/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:25 -0400] "GET /wp-includes/certificates/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:25 -0400] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:25 -0400] "GET /wp-admin/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:25 -0400] "GET /templates/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:26 -0400] "GET /cgi-bin/users.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:26 -0400] "GET /wp-admin/network/ayk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:26 -0400] "GET /.well-known/pki-validation/baja.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:07:26 -0400] "GET /sys.phhttp:/marykelledy.com/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:07:26 -0400] "GET /.well-known/pki-validation/radio.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:26 -0400] "GET /wp-admin/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:27 -0400] "GET /.well-known/zaza.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:27 -0400] "GET /.well-known/acme-challenge/shimo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:27 -0400] "GET /wp-includes/images/smilies/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:27 -0400] "GET /max.phhttp:/sushiavenue.fr/alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:27 -0400] "GET /.well-known/webdb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:28 -0400] "GET /edit-tags.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:28 -0400] "GET /wp-includes/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:28 -0400] "GET /wp-l0gin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:28 -0400] "GET /wp-content/plugins/clara/clara.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:28 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.phpcom.au/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:29 -0400] "GET /main.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:29 -0400] "GET /wp-admin/css/colors/modern/git.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:29 -0400] "GET /wp-includes/wp-includes/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:29 -0400] "GET /wp-includes/images/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:29 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:07:29 -0400] "GET /wp-content/uploads/2023/user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:07:30 -0400] "GET /.well-known/pki-validation/iR7SzrsOUEP.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:30 -0400] "GET /wp-content/upgrade/ss.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:30 -0400] "GET /wp-includes/SimplePie/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:30 -0400] "GET /wp-includes/shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:30 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:31 -0400] "GET /pgs.phP HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:31 -0400] "GET /cgi-bin/iR7SzrsOUEP.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:31 -0400] "GET /wp-content/themes/tflow/goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:31 -0400] "GET /wordpress/wp-content/uploads/_input_3_css.phtml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:31 -0400] "GET /.well-known/bs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:31 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:32 -0400] "GET /wp-includes/images/file1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:32 -0400] "GET /wp-activate.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:32 -0400] "GET /wp-includes/ID3/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:32 -0400] "GET /wp-admin/js/widgets/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:32 -0400] "GET /wp-includes/css/dist/wp-l0gin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:33 -0400] "GET /fox.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:33 -0400] "GET /wp-admin/images/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:33 -0400] "GET /ALFA_DATA/alfacgiapi/wp-conflg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:33 -0400] "GET /.well-known/pki-validation/flower.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:33 -0400] "GET /class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:33 -0400] "GET /wp-blog-header.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:34 -0400] "GET /wp-admin/images/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:34 -0400] "GET /.well-known/pki-validation/wrapper.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:34 -0400] "GET /wp-content/uploads/lmfi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:34 -0400] "GET /index2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:34 -0400] "GET /.well-known/pki-validation/web.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:34 -0400] "GET /.well-known/pki-validation/index1.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:35 -0400] "GET /nf_tracking.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:35 -0400] "GET /woh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:35 -0400] "GET /wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:35 -0400] "GET /bala.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:35 -0400] "GET /tiny.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:36 -0400] "GET /wpkey.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:07:36 -0400] "GET /goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:07:36 -0400] "GET /masterjob/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:36 -0400] "GET /crop.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:36 -0400] "GET /webshell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:36 -0400] "GET /filemanager/dialog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:07:37 -0400] "GET /you.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:37 -0400] "GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:37 -0400] "GET /wp-content/uploads/2023/05/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:37 -0400] "GET /.well-known/fierzashell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:37 -0400] "GET /wp-content/themes/wp-classic/inc/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:38 -0400] "GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:38 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:38 -0400] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:38 -0400] "GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:38 -0400] "GET /ioxi01.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:38 -0400] "GET /tinyfilemanager/tinyfilemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:39 -0400] "GET /ty.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:07:39 -0400] "GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:39 -0400] "GET /profile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:39 -0400] "GET /wp-content/plugins/background-image-cropper/ups.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:39 -0400] "GET /sts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:07:40 -0400] "GET /include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:40 -0400] "GET /leaf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:40 -0400] "GET /wp-content/db-cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:40 -0400] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:40 -0400] "GET /yrlgvupk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:41 -0400] "GET /wp-content/themes/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:41 -0400] "GET /filemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:41 -0400] "GET /wp-content/plugins/TOPXOH/wDR.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:41 -0400] "GET /wp-file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:07:41 -0400] "GET /ova-wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:41 -0400] "GET /fm1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:42 -0400] "GET /form.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:42 -0400] "GET /wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:42 -0400] "GET /wp-2018.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:42 -0400] "GET /siti.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:42 -0400] "GET /abe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:07:43 -0400] "GET /insoamv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:07:43 -0400] "GET /wp-p.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:43 -0400] "GET /wp-admin/includes/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:43 -0400] "GET /css/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:07:43 -0400] "GET /wp-admin/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:43 -0400] "GET /wp-content/themes/astra/inc/ki1k.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:44 -0400] "GET /wp-admin/maint/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:44 -0400] "GET /wp-content/plugins/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:44 -0400] "GET /.tmb/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:44 -0400] "GET /.well-known/alfanew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:07:44 -0400] "GET /wp-admin/css/colors/coffee/lofter.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:44 -0400] "GET /wp-includes/Requests/Auth/images.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:45 -0400] "GET /wp-content/themes/seotheme/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:45 -0400] "GET /.tmb/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:45 -0400] "GET /wp-includes/theme-compat/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:45 -0400] "GET /wp-admin/network/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:45 -0400] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:46 -0400] "GET /wp-includes/certificates/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:07:46 -0400] "GET /bless.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:46 -0400] "GET /wordpress/update/bibil.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:46 -0400] "GET /avaa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:46 -0400] "GET /wp-content/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:47 -0400] "GET /update/403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:07:47 -0400] "GET /wp-content/plugins/seooyanz/wsoyanzv2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:47 -0400] "GET /about/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:47 -0400] "GET /wp-content/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:47 -0400] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:47 -0400] "GET /wp-content/upgrade-temp-backup/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:48 -0400] "GET /wp-content/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:48 -0400] "GET /wp-includes/IXR/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:48 -0400] "GET /wp-includes/pomo/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:48 -0400] "GET /wp-includes/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:49 -0400] "GET /xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:49 -0400] "GET /user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:49 -0400] "GET /wp-content/languages/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:49 -0400] "GET /config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:49 -0400] "GET /goat1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:49 -0400] "GET /wp-admin/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:50 -0400] "GET /wp-content/plugins/fix/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:07:50 -0400] "GET /wp-includes/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:50 -0400] "GET /wp-admin/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:50 -0400] "GET /wp-admin/network/word.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:50 -0400] "GET /extracte_wordprees/dirfunc/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:51 -0400] "GET /wp-admih.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:51 -0400] "GET /wp-content/plugins/shell/noimg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:51 -0400] "GET /land.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:51 -0400] "GET /hobi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:51 -0400] "GET /wp-content/plugins/Core-Econ/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:07:52 -0400] "GET /x7.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:52 -0400] "GET /wp-admin/network/abuot.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:52 -0400] "GET /.well-known/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:52 -0400] "GET /FoxWSOv1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:07:52 -0400] "GET /Patrick.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:07:53 -0400] "GET /modules/karakaroa/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:07:53 -0400] "GET /wp-includes/images/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:53 -0400] "GET /abuot.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:53 -0400] "GET /black2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:53 -0400] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:54 -0400] "GET /wp-content/plugins/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:54 -0400] "GET /jkaeeehs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:07:54 -0400] "GET /.well-known/pki-validation/wp-login.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:54 -0400] "GET /wp-includes/wp-load.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:54 -0400] "GET /wp-admin/includes/manager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:55 -0400] "GET /vendor/guzzlehttp/alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:55 -0400] "GET /wp-admin/meta/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:55 -0400] "GET /wp-content/plugins/ttxecy/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:55 -0400] "GET /wp-Includes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:55 -0400] "GET /include/bussubmit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:56 -0400] "GET /map.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:07:56 -0400] "GET /olux.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:56 -0400] "GET /wp-includespreviews.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:07:56 -0400] "GET /repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:07:56 -0400] "GET /wp-admin/images/module.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:07:56 -0400] "GET /wp-includes/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:57 -0400] "GET /admin/controller/extension/wpm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:57 -0400] "GET /payout.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:57 -0400] "GET /wp_info.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:57 -0400] "GET /wp-content/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:57 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:58 -0400] "GET /by.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:58 -0400] "GET /wp-content/plugins/Cache/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:58 -0400] "GET /wp-includes/sodium_compat/src/Core/Curve25519/Ge/wp_blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:58 -0400] "GET /wp-admin/includes/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:59 -0400] "GET /wp-content/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:59 -0400] "GET /wp-includes/blocks/table/int/tmpl/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:59 -0400] "GET /wp-admin/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:07:59 -0400] "GET /wp-content/plugins/ccx/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:07:59 -0400] "GET /admin/controller/extension/extension/Not_Found.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:00 -0400] "GET /google.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:08:00 -0400] "GET /sidwso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:00 -0400] "GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:08:00 -0400] "GET /wp-includes/Requests/Text/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:00 -0400] "GET /wp-includes/Requests/Text/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:01 -0400] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:01 -0400] "GET /wp-includes/random_compat/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:01 -0400] "GET /style2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:01 -0400] "GET /wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:08:02 -0400] "GET /wp-scripts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:02 -0400] "GET /adminfuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:02 -0400] "GET /comfunctions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:03 -0400] "GET /epinyins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:08:03 -0400] "GET /filefuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:03 -0400] "GET /hinfofuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:03 -0400] "GET /qfunctions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:03 -0400] "GET /qinfofuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:04 -0400] "GET /thoms.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:04 -0400] "GET /postnews.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:04 -0400] "GET /wp-config-sample.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:08:04 -0400] "GET /admin-ajax.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:05 -0400] "GET /ms-themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:05 -0400] "GET /my-sites.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:08:05 -0400] "GET /media.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:06 -0400] "GET /admin-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:06 -0400] "GET /options-head.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:06 -0400] "GET /revision.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:06 -0400] "GET /term.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:07 -0400] "GET /wp-pano.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:08:07 -0400] "GET /xt/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:07 -0400] "GET /moded.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:07 -0400] "GET /wp-includes/images/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:08 -0400] "GET /wp-content/themes/signify/firkon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:09 -0400] "GET /upgrade.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:09 -0400] "GET /gh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:08:10 -0400] "GET /head.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:10 -0400] "GET /index1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:08:10 -0400] "GET /theme-insqbzk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:11 -0400] "GET /good.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:11 -0400] "GET /wp-22.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:12 -0400] "GET /wsoyanz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:12 -0400] "GET /wp-includes/fonts/css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:13 -0400] "GET /wp-content/plugins/envato-market/inc/class-envato-market-api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:13 -0400] "GET /wp-admin/network/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:14 -0400] "GET /css/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:14 -0400] "GET /wp-admin/css/colors/coffee/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:14 -0400] "GET /wp-admin/css/colors/blue/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:08:14 -0400] "GET /wp-admin/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:15 -0400] "GET /wp-content/plugins/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:15 -0400] "GET /wp-includes/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:16 -0400] "GET /.well-known/bala.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:16 -0400] "GET /wp-content/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:16 -0400] "GET /wp-admin/repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:16 -0400] "GET /wp-includes/repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:17 -0400] "GET /wp-content/repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:17 -0400] "GET /wp-content/plugins/seoo/wsoyanz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:17 -0400] "GET /wp-content/plugins/seoo/wsoyanz1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:17 -0400] "GET /cache-compat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:18 -0400] "GET /ajax-actions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:18 -0400] "GET /wp-admin/ajax-actions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:08:18 -0400] "GET /wp-consar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:18 -0400] "GET /wp-admin/maint/maint/ajax-actions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:19 -0400] "GET /alfanew.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:08:19 -0400] "GET /adminfuns.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:19 -0400] "GET /alfanew2.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:08:19 -0400] "GET /wp-content/plugins/wp-daft/miin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:20 -0400] "GET /wp-content/style-css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:20 -0400] "GET /wp-includes/SimplePie/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:20 -0400] "GET /wp-includes/sitemaps/providers/ultra.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:20 -0400] "GET /sx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:20 -0400] "GET /wp-includes/SimplePie/gzdecode.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:21 -0400] "GET /wp-admin/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:21 -0400] "GET /images/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:21 -0400] "GET /wp-includes/IXR/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:21 -0400] "GET /ALFA_DATA/alfacgiapi/all.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:22 -0400] "GET /wp-admin/css/colors/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:22 -0400] "GET /wp-includes/js/plupload/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:22 -0400] "GET /wp-uploads-config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:22 -0400] "GET /wp-admin/includes/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:23 -0400] "GET /cgi-bin/wp-login.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:23 -0400] "GET /as.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:23 -0400] "GET /edit-comments.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:23 -0400] "GET /export.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:24 -0400] "GET /input.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:24 -0400] "GET /load-scripts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:24 -0400] "GET /load-styles.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:24 -0400] "GET /options-discussion.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:25 -0400] "GET /options-general.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:25 -0400] "GET /options-permalink.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:25 -0400] "GET /options-privacy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:08:26 -0400] "GET /options-reading.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:26 -0400] "GET /options-writing.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:26 -0400] "GET /post-new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:26 -0400] "GET /privacy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:26 -0400] "GET /site-health.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:27 -0400] "GET /user-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:27 -0400] "GET /user-new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:27 -0400] "GET /wp-by-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:27 -0400] "GET /bar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:28 -0400] "GET /samll.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:28 -0400] "GET /100.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:28 -0400] "GET /plugin-install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:28 -0400] "GET /km.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:08:29 -0400] "GET /LA.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:29 -0400] "GET /wp-good.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:29 -0400] "GET /wp-ldd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:29 -0400] "GET /sgd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:30 -0400] "GET /wp-admin/images/Mhbgf.php/wp-content/themes/travelscape/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:30 -0400] "GET /wp-includes/ID3/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:30 -0400] "GET /wp-content/themes/hariko/lib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:08:31 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:31 -0400] "GET /wp-content/plugins/classic-editor/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:08:31 -0400] "GET /Njima.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:32 -0400] "GET /.tmb/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:32 -0400] "GET /wp-content/themes/pridmag/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:32 -0400] "GET /FroggBaba.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:08:32 -0400] "GET /wp-includes/pomo/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:32 -0400] "GET /wp-admin/maint/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:33 -0400] "GET /wp-content/plugins/tunnelforms/lib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:33 -0400] "GET /wp-content/plugins/tunnelforms/lib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:33 -0400] "GET /wp-admin/user/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:33 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:34 -0400] "GET /wp-admin/images/Mhbgf.php/xx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:08:34 -0400] "GET /gali.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:34 -0400] "GET /wp-admin/wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:34 -0400] "GET /cache/i/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:08:35 -0400] "GET /dirs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:35 -0400] "GET /abouts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:35 -0400] "GET /malls.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:08:36 -0400] "GET /liefs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:36 -0400] "GET /uc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:36 -0400] "GET /locks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:08:37 -0400] "GET /wp-dsdd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:37 -0400] "GET /wordpress/logsxxyyzz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:37 -0400] "GET /css/bun.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:38 -0400] "GET /js/edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:38 -0400] "GET /wp-themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:08:38 -0400] "GET /wp-uploads.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:39 -0400] "GET /stindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:39 -0400] "GET /shop.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:39 -0400] "GET /exit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:39 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:39 -0400] "GET /worm3.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:40 -0400] "GET /shellv3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:40 -0400] "GET /priv8.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:40 -0400] "GET /delete3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:40 -0400] "GET /wp-content/plugins/wp-doftx/noimg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:41 -0400] "GET /wp-content/themes/bltm/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:41 -0400] "GET /server.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:41 -0400] "GET /mailer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:41 -0400] "GET /phpzipincs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:08:42 -0400] "GET /www.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:08:42 -0400] "GET /css/wp-casper.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:42 -0400] "GET /cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:08:42 -0400] "GET /assets/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:43 -0400] "GET /wp-content/plugins/wp-doft/noimg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:43 -0400] "GET /ioxi001.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:08:43 -0400] "GET /media-admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:43 -0400] "GET /Kenneth.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:43 -0400] "GET /Rosette.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:44 -0400] "GET /beence.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:44 -0400] "GET /update.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:08:44 -0400] "GET /service.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:44 -0400] "GET /app.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:44 -0400] "GET /poi.PhP8/search.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:08:45 -0400] "GET /brand.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:45 -0400] "GET /index.html HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:45 -0400] "GET /kevinpngjpg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:08:46 -0400] "GET /wp-content/themes/cay-van-phong/kevinpngjpg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:47 -0400] "GET /wp-content/plugins/devvn-quick-buy/kevinpngjpg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:47 -0400] "GET /wp-content/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:08:47 -0400] "GET /wp-includes/class-json-ajax-session.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:08:47 -0400] "GET /profile.php6 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:48 -0400] "GET /wp-admin/css/colors/blue/blkqvmih.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:48 -0400] "GET /home.php?xsec=team2 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:08:48 -0400] "GET /wp-content/plugins/ioptimization/IOptimize.php?rchk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:48 -0400] "GET /.well-known/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:49 -0400] "GET /.well-known/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:49 -0400] "GET /components/com_jea/views/form/tmpl/size.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:49 -0400] "GET /wp-admin/user/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:49 -0400] "GET /wp-admin/css/colors/blue/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:50 -0400] "GET /wp-content/themes/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:50 -0400] "GET /wp-includes/ID3/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:50 -0400] "GET /wp-admin/css/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:51 -0400] "GET /wp-admin/includes/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:51 -0400] "GET /wp-admin/maint/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:51 -0400] "GET /wp-content/upgrade/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:51 -0400] "GET /wp-includes/fonts/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:52 -0400] "GET /.tmb/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:52 -0400] "GET /wp-includes/IXR/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:52 -0400] "GET /.well-known/pki-validation/plugins.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:52 -0400] "GET /wp-includes/random_compat/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:53 -0400] "GET /wp-content/languages/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:08:53 -0400] "GET /plugins/pwnd/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:53 -0400] "GET /themes/pridmag/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:53 -0400] "GET /wp-includes/IXR/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:53 -0400] "GET /pgs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:54 -0400] "GET /ioxi002.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:54 -0400] "GET /images/neko.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:54 -0400] "GET /wp-includes/fonts/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:54 -0400] "GET /indec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:55 -0400] "GET /wp-content/444.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:55 -0400] "GET /wp-content/choosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:55 -0400] "GET /wp-content/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:55 -0400] "GET /wp-content/laiksw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:56 -0400] "GET /wp-apxupx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:56 -0400] "GET /wp-content/plugins/ioptimization/IOptimize.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:08:56 -0400] "GET /gu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:08:56 -0400] "GET /wp-conf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:08:56 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:57 -0400] "GET /bs1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:57 -0400] "GET /wp-admin/images/Mhbgf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:57 -0400] "GET /wp-settings.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:57 -0400] "GET /.well-known/pki-validation/shell.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:58 -0400] "GET /.well-known/pki-validation/install.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:58 -0400] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:58 -0400] "GET /css/load.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:58 -0400] "GET /wp-admin/js/widgets/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:59 -0400] "GET /wp-content/plugins/fix/as.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:08:59 -0400] "GET /checkbex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:08:59 -0400] "GET /.well-known/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:08:59 -0400] "GET /wp-includes/class-wp-smtp-bar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:08:59 -0400] "GET /.well-known/acme-challenge/inputs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:00 -0400] "GET /wp-admin/includes/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:00 -0400] "GET /cgi-bin/inputs.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:00 -0400] "GET /themes/zMousse/otuz1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:00 -0400] "GET /aks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:00 -0400] "GET /wp-content/uploads/wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:09:01 -0400] "GET /.well-known/acme-challenge/wp-conf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:01 -0400] "GET /moderation.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:01 -0400] "GET /core.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:02 -0400] "GET /wp-content/wp-conf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:02 -0400] "GET /tong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:02 -0400] "GET /.well-known/pki-validation/wp-conf.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:02 -0400] "GET /wp-content/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:02 -0400] "GET /wp-content/plugin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:03 -0400] "GET /wp-includes/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:03 -0400] "GET /wp-includes/item.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:09:03 -0400] "GET /classsmtps.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:03 -0400] "GET /wp-includes/wp-conf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:09:04 -0400] "GET /wp-content/themes/cay-van-phong/skibidi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:04 -0400] "GET /.well-known/wp-conf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:04 -0400] "GET /wp-content/themes/twentytwentytwo/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:04 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/kill.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:04 -0400] "GET /images/images.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:05 -0400] "GET /fai.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:05 -0400] "GET /ext.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:05 -0400] "GET /wsa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:05 -0400] "GET /home.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:05 -0400] "GET /wp-includes/sitemaps/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:06 -0400] "GET /wp-includes/js/tinymce/wp-tinymce.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:06 -0400] "GET /indosec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:06 -0400] "GET /templates/beez3/error.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:07 -0400] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:07 -0400] "GET /phpinfo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:07 -0400] "GET /wp-includes/Text/Diff/Engine.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:07 -0400] "GET /wp-content/uploads/uploads.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:09:08 -0400] "GET /wp-includes/PHPailer/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:09:08 -0400] "GET /upload/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:08 -0400] "GET /wp-includes/ID3/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:08 -0400] "GET /wp-includes/css/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:08 -0400] "GET /wp-content/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:09 -0400] "GET /wp-includes/product.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:09:09 -0400] "GET /wp-includes/network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:09:09 -0400] "GET /wp-admin/maint/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:09 -0400] "GET /wp-admin/includes/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:09:09 -0400] "GET /wp-content/themes/tflow/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:10 -0400] "GET /wp-admin/user/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:10 -0400] "GET /css/css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:10 -0400] "GET /wp-includes/click.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:10 -0400] "GET /wp-includes/IXR/class-IXR-http.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:10 -0400] "GET /wp-content/uploads/cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:11 -0400] "GET /wp-admin/js/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:11 -0400] "GET /wp-admin/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:11 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:11 -0400] "GET /.well-known/acme-challenge/class_api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:12 -0400] "GET /templates/beez/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:09:12 -0400] "GET /.well-known/pki-validation/mariju.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:12 -0400] "GET /wp-admin/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:12 -0400] "GET /uploads/Alex-Cross.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:12 -0400] "GET /wp-includes/ID3/mariju.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:13 -0400] "GET /wp-includes/SimplePie/Content/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:13 -0400] "GET /wp-content/plugins/helloapx/wp-apxupx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:13 -0400] "GET /wp-content/plugins/dhon/newsfeed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:13 -0400] "GET /vedcve.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:13 -0400] "GET /jsdindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:14 -0400] "GET /lofter.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:14 -0400] "GET /wp-includes/sodium_compat/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:14 -0400] "GET /images/transfusem.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:14 -0400] "GET /wp-includes/PHPMailer/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:15 -0400] "GET /wp-includes/options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:09:15 -0400] "GET /wp-content/uploads/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:09:15 -0400] "GET /plugins/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:15 -0400] "GET /wp-content/plugins/ioxi/retu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:15 -0400] "GET /.well-known/acme-challenge/sxx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:16 -0400] "GET /wp-includes/widgets/parx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:16 -0400] "GET /test/wp-admin/maint/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:16 -0400] "GET /wp-content/plugins/js_composer/assets/wp-blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:16 -0400] "GET /wp-includes/SimplePie/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:17 -0400] "GET /wp-admin/css/colors/coffee/upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:17 -0400] "GET /wp-crom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:17 -0400] "GET /wp-confiq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:09:17 -0400] "GET /geju.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:17 -0400] "GET /hiroshi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:18 -0400] "GET /fun.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:09:18 -0400] "GET /kajisak.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:18 -0400] "GET /TNT.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:19 -0400] "GET /trust.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:19 -0400] "GET /godsend.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:19 -0400] "GET /wp-zett.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:19 -0400] "GET /LV.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:09:19 -0400] "GET /87.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:20 -0400] "GET /pi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:20 -0400] "GET /wboom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:20 -0400] "GET /gettest.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:20 -0400] "GET /wp-ok.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:20 -0400] "GET /bionic.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:21 -0400] "GET /hidey.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:21 -0400] "GET /myk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:21 -0400] "GET /kajiwara.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:21 -0400] "GET /wp-sigunq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:21 -0400] "GET /my1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:22 -0400] "GET /aclass.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:22 -0400] "GET /admin1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:22 -0400] "GET /wp-signups.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:22 -0400] "GET /cdm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:22 -0400] "GET /Simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:23 -0400] "GET /def.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:23 -0400] "GET /infos.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:09:23 -0400] "GET /admin11.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:24 -0400] "GET /fond.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:24 -0400] "GET /mariju.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:24 -0400] "GET /termps.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:24 -0400] "GET /vip.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:24 -0400] "GET /txets.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:25 -0400] "GET /special.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:25 -0400] "GET /search.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:25 -0400] "GET /wp-log1n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:25 -0400] "GET /networks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:26 -0400] "GET /report.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:26 -0400] "GET /abby.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:26 -0400] "GET /anger.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:26 -0400] "GET /lu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:27 -0400] "GET /public/makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:27 -0400] "GET /wp-content/updraft/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:27 -0400] "GET /include/Lurd.class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:27 -0400] "GET /wp-content/plugins/not/includes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:27 -0400] "GET /wp-content/plugins/awesome-coming-soon/come.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:28 -0400] "GET /go.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:28 -0400] "GET /wp-content/plugins/page-flip-image-gallery/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:28 -0400] "GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:09:28 -0400] "GET /alfanew.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:28 -0400] "GET /glpi/vendor/network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:29 -0400] "GET /wp-includes/sodium_compat/src/Core/Curve25519/Ge/network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:29 -0400] "GET /print/bkindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:29 -0400] "GET /prosellers.PhP7?pass=prosellers HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:29 -0400] "GET /.tmb/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:30 -0400] "GET /small.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:30 -0400] "GET /1337.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:30 -0400] "GET /wp-content/themes/hideo/network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:09:30 -0400] "GET /wp-content/themes/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:31 -0400] "GET /wp-includes/widgets/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:31 -0400] "GET /wp-content/plugins/helloapx/wp-apxupx.php?apx=upx HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:32 -0400] "GET /wp-aa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:32 -0400] "GET /mah/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:32 -0400] "GET /WSOEnigma.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:32 -0400] "GET /wp-includes/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:33 -0400] "GET /wp-content/plugins/phpadmin/as.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:34 -0400] "GET /cgi-bin/cgi-bin/about.php7 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:34 -0400] "GET /wp-content/plugins/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:34 -0400] "GET /css/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:34 -0400] "GET /wp-admin/js/about.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:35 -0400] "GET /ee.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:35 -0400] "GET /consystem.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:35 -0400] "GET /_css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:35 -0400] "GET /conf1g.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:09:35 -0400] "GET /base.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:36 -0400] "GET /wsi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:36 -0400] "GET /wp-content/plugins/wpcall-button/button-image.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:09:36 -0400] "GET /wp-content/plugins/phpadmin/acp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:36 -0400] "GET /wp-content/plugins/phpad/acp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:37 -0400] "GET /wp-content/themes/too.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:37 -0400] "GET /wp-includes/assets/winnner.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:37 -0400] "GET /wp-content/plugins/classic-addon/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:37 -0400] "GET /wp-content/plugins/eventon-addon/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:37 -0400] "GET /wp-content/plugins/royal-ckeditor/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:38 -0400] "GET /fwe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:38 -0400] "GET /wp-content/11.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:38 -0400] "GET /.well-known/class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:38 -0400] "GET /.well-known/pki-validation/class.api.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:39 -0400] "GET /wp-content/class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:40 -0400] "GET /.tmb/class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:40 -0400] "GET /images/class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:40 -0400] "GET /wp-content/uploads/class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:40 -0400] "GET /.well-known/acme-challenge/class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:40 -0400] "GET /wp-includes/class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:41 -0400] "GET /wp-content/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:41 -0400] "GET /wp-content/uploads/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:41 -0400] "GET /wp-content/themes/freeyanz/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.102.230.131 - - [04/May/2025:23:09:41 -0400] "GET /wp-content/themes/erapress/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.102.230.131 - - [04/May/2025:23:09:42 -0400] "GET /wp-content/plugins/doyanz/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:42 -0400] "GET /wp-content/themes/panama/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:09:42 -0400] "GET /wp-content/themes/moog/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:42 -0400] "GET /wp-content/uploads/2023/11/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:43 -0400] "GET /wp-content/uploads/2023/12/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:43 -0400] "GET /wp-content/themes/blogai/issue.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:43 -0400] "GET /wp-content/themes/agwin/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:43 -0400] "GET /wp-content/themes/quext/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:09:44 -0400] "GET /wp-content/plugins/app-calendar/config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:44 -0400] "GET /wp-content/smm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:09:44 -0400] "GET /jetpack.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:44 -0400] "GET /xltavrat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:44 -0400] "GET /.wp-back.phP HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:09:45 -0400] "GET /wp-admin/fw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:45 -0400] "GET /wp-content/fw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:45 -0400] "GET /wp-commentin.php?pass=f0aab4595a024d626315fb786dce8282 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:45 -0400] "GET /.well-known/pki-validation/atomlib.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:45 -0400] "GET /wp-includes/sodium_compat/src/Core32/Curve25519/Ge/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:46 -0400] "GET /libraries/fof/database/iterator/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:46 -0400] "GET /wp-content/data-db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:46 -0400] "GET /components/com_newsfeeds/models/indexx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:46 -0400] "GET /plugins/finder/categories/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:46 -0400] "GET /updates.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:47 -0400] "GET /thanks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:47 -0400] "GET /wp-content/themes/finley/min.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:47 -0400] "GET /wp-content/themes/mero-megazines/ws.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:47 -0400] "GET /wp-content/themes/welfare-charity/www.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:47 -0400] "GET /wp-admin/xl2023.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:48 -0400] "GET /wp-content/xl2023.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:09:48 -0400] "GET /wp-includes/xl2023.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:48 -0400] "GET /wp-content/themes/applica/400.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:48 -0400] "GET /wp-includes/sitemaps/providers/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:48 -0400] "GET /xleet-shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:49 -0400] "GET /wp-admin/xleet-shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:49 -0400] "GET /wp-content/xleet-shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:49 -0400] "GET /wp-includes/xleet-shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.102.230.131 - - [04/May/2025:23:09:49 -0400] "GET /wp-admin/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:49 -0400] "GET /wp-content/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:50 -0400] "GET /wp-admin/shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:50 -0400] "GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:50 -0400] "GET /wp-content/plugins/wordpress-three/miin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:50 -0400] "GET /wp-content/plugins/column/miin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:50 -0400] "GET /wp-content/plugins/hellopress/wp_mna.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.102.230.131 - - [04/May/2025:23:09:50 -0400] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.102.230.131 - - [04/May/2025:23:09:51 -0400] "GET /wp-content/plugins/hellopress/0xlufix2023.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:51 -0400] "GET /wp-confiig.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:51 -0400] "GET /wp_wrong_datlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:51 -0400] "GET /loger.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:51 -0400] "GET /gank.php.PhP HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.102.230.131 - - [04/May/2025:23:09:52 -0400] "GET /wikindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:52 -0400] "GET /wp.php?Chitoge HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:52 -0400] "GET /sym403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:09:52 -0400] "GET /wp-content/plugins/w0rdpr3ssnew/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:52 -0400] "GET /database.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:53 -0400] "GET /wp-content/plugins/xwp/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:53 -0400] "GET /wp-content/plugins/anttt/simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:53 -0400] "GET /wp-content/plugins/instabuilder2/cache/plugins/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:53 -0400] "GET /wp-content/plugins/instabuilder2/cache/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:09:54 -0400] "GET /wp-content/plugins/wordpresss3cll/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:54 -0400] "GET /wp-content/plugins/wpyii2/wpyii2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:54 -0400] "GET /wp-content/plugins/wpputty/wpputty.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:09:54 -0400] "GET /wp-content/plugins/dos2unix/dos2unix.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:54 -0400] "GET /wp-includes/sitemaps/providers/alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:55 -0400] "GET /wp-includes/PHPMailer/alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:55 -0400] "GET /wp-admin/maint/alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:55 -0400] "GET /wp-includes/IXR/alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:56 -0400] "GET /wp-includes/images/crystal/alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:56 -0400] "GET /wp-admin/css/colors/blue/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:56 -0400] "GET /wp-admin/css/colors/ocean/alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:56 -0400] "GET /wp-admin/css/colors/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:56 -0400] "GET /wp-admin/maint/webdb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:57 -0400] "GET /wsoyanzfv3.phP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:57 -0400] "GET /wp-content/plugins/shell/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:57 -0400] "GET /wp-admin/css/acces.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:57 -0400] "GET /wp-includes/css/str_replace.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:09:58 -0400] "GET /wp-admin/css/colors/midnight/strcmp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:58 -0400] "GET /wp-admin/includes/sts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:58 -0400] "GET /wp-includes/uploads.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:09:58 -0400] "GET /wp-includes/images/crystal/option.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:59 -0400] "GET /wp-admin/maint/maint.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:09:59 -0400] "GET /wp-admin/images/html.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:59 -0400] "GET /wp-includes/server.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:09:59 -0400] "GET /wp-admin/images/APLpewO.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:09:59 -0400] "GET /wp-admin/js/html.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:00 -0400] "GET /wp-admin/images/upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:00 -0400] "GET /wp-admin/css/colors/blue/ovairezah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:00 -0400] "GET /wp-includes/pomo/xml.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.102.230.131 - - [04/May/2025:23:10:00 -0400] "GET /wp-includes/fonts/send.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:00 -0400] "GET /uploads/gecko.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.102.230.131 - - [04/May/2025:23:10:01 -0400] "GET /wp-content/uploads/2024/09/sst.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:01 -0400] "GET /wp-admin/css/colors/midnight/fxtell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:01 -0400] "GET /files/mailer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.102.230.131 - - [04/May/2025:23:10:01 -0400] "GET /images/pushy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:10:01 -0400] "GET /wp-admin/css/colors/midnight/contact.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:02 -0400] "GET /wp-admin/includes/lmfi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.102.230.131 - - [04/May/2025:23:10:02 -0400] "GET /wp-content/uploads/zi_whatisit___bea.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:02 -0400] "GET /wp-includes/wp-mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:02 -0400] "GET /images/contact.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:03 -0400] "GET /wp-content/uploads/class.enhanced.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.102.230.131 - - [04/May/2025:23:10:03 -0400] "GET /wp-includes/ms-load-wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.102.230.131 - - [04/May/2025:23:10:03 -0400] "GET /wp-admin/maint/Mailer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.102.230.131 - - [04/May/2025:23:10:03 -0400] "GET /images/photo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.102.230.131 - - [04/May/2025:23:10:03 -0400] "GET /images/g3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.102.230.131 - - [04/May/2025:23:10:04 -0400] "GET /wp-includes/miso-bold.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:14 -0400] "GET /.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 91.199.118.59 - - [04/May/2025:23:10:14 -0400] "GET /.well-known/pki-validation/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 91.199.118.59 - - [04/May/2025:23:10:15 -0400] "GET /.well-known/acme-challenge/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:15 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:15 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:15 -0400] "GET /wp-content/themes/tflow/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:16 -0400] "GET /wp-admin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:16 -0400] "GET /wordpress/wp-admin/includes HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:16 -0400] "GET /wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:16 -0400] "GET /ALFA_DATA/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:17 -0400] "GET /wp-content/upgrade/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 91.199.118.59 - - [04/May/2025:23:10:17 -0400] "GET /wp-admin/css/colors/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:17 -0400] "GET /wp-includes/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:17 -0400] "GET /wp-includes/ID3 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:18 -0400] "GET /wp-includes/Requests/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:18 -0400] "GET /wp-includes/blocks/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:18 -0400] "GET /wp-includes/certificates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 91.199.118.59 - - [04/May/2025:23:10:18 -0400] "GET /wp-includes/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 91.199.118.59 - - [04/May/2025:23:10:19 -0400] "GET /wp-admin/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:19 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 91.199.118.59 - - [04/May/2025:23:10:19 -0400] "GET /wp-admin/meta/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:19 -0400] "GET /wp-admin/network/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:20 -0400] "GET /wp-admin/user/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:20 -0400] "GET /wp-content/uploads/ao_ccss/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:20 -0400] "GET /wp-content/uploads/2021/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:20 -0400] "GET /wp-content/plugins/elementor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 91.199.118.59 - - [04/May/2025:23:10:20 -0400] "GET /wp-content/mu-plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 91.199.118.59 - - [04/May/2025:23:10:21 -0400] "GET /upload/image/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 91.199.118.59 - - [04/May/2025:23:10:21 -0400] "GET /wordpress/wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:21 -0400] "GET /wordpress/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:21 -0400] "GET /blog/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:22 -0400] "GET /sites/default/files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:22 -0400] "GET /admin/controller/extension/extension/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:22 -0400] "GET /admin/editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:22 -0400] "GET /admin/images/slider/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:23 -0400] "GET /admin/tmp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:23 -0400] "GET /admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:23 -0400] "GET /Admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:23 -0400] "GET /admin/uploads/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:23 -0400] "GET /administrator/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 91.199.118.59 - - [04/May/2025:23:10:24 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 91.199.118.59 - - [04/May/2025:23:10:24 -0400] "GET /assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:24 -0400] "GET /cgi-bin/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:24 -0400] "GET /components/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:24 -0400] "GET /home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:25 -0400] "GET /include/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:25 -0400] "GET /modules/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 91.199.118.59 - - [04/May/2025:23:10:25 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 91.199.118.59 - - [04/May/2025:23:10:25 -0400] "GET /mt/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:25 -0400] "GET /site/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:26 -0400] "GET /tmps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 91.199.118.59 - - [04/May/2025:23:10:26 -0400] "GET /wordpress/wp-admin/includes/wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:26 -0400] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:27 -0400] "GET /wp-admin/css/colors/light/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 91.199.118.59 - - [04/May/2025:23:10:27 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:27 -0400] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:27 -0400] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:28 -0400] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:28 -0400] "GET /wp-admin/js/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:28 -0400] "GET /wp-content/languages/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 91.199.118.59 - - [04/May/2025:23:10:28 -0400] "GET /wp-content/uploads/2022/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 91.199.118.59 - - [04/May/2025:23:10:29 -0400] "GET /wp-content/uploads/2023/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:29 -0400] "GET /wp-content/uploads/2024/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:29 -0400] "GET /wp-includes/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:29 -0400] "GET /wp-includes/css/dist/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:30 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:30 -0400] "GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:30 -0400] "GET /wp-includes/images/crystal/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:30 -0400] "GET /wp-includes/images/media/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:30 -0400] "GET /wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:31 -0400] "GET /wp-includes/images/wlw/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 91.199.118.59 - - [04/May/2025:23:10:31 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:31 -0400] "GET /wp-includes/js/plupload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 91.199.118.59 - - [04/May/2025:23:10:31 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 91.199.118.59 - - [04/May/2025:23:10:31 -0400] "GET /wp-includes/sitemaps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 91.199.118.59 - - [04/May/2025:23:10:32 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:32 -0400] "GET /cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:32 -0400] "GET /cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:32 -0400] "GET /cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:33 -0400] "GET /ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:33 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:33 -0400] "GET /wp-content/plugins/linkpreview/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:33 -0400] "GET /wp-content/plugins/aryabot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:33 -0400] "GET /wp-content/plugins/BrutalShell/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:34 -0400] "GET /wp-content/plugins/cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:34 -0400] "GET /wp-content/plugins/cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:34 -0400] "GET /wp-content/plugins/cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:34 -0400] "GET /wp-content/plugins/db/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:34 -0400] "GET /wp-content/plugins/home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 91.199.118.59 - - [04/May/2025:23:10:34 -0400] "GET /wp-content/plugins/limit/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:35 -0400] "GET /wp-content/plugins/owfsmac/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:35 -0400] "GET /wp-content/plugins/prenota/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:35 -0400] "GET /wp-content/plugins/random/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 91.199.118.59 - - [04/May/2025:23:10:35 -0400] "GET /wp-content/plugins/ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:36 -0400] "GET /wp-content/plugins/Uwogh-Segs/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:36 -0400] "GET /wp-content/plugins/wp-diambar/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 91.199.118.59 - - [04/May/2025:23:10:36 -0400] "GET /wp-content/plugins/wp-freeform/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:36 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:36 -0400] "GET /wp-content/plugins/wpeazvp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:37 -0400] "GET /wp-content/plugins/zaen/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 91.199.118.59 - - [04/May/2025:23:10:37 -0400] "GET /wp-content/uploads/revslider/templates/immersion-photography/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:37 -0400] "GET /patriotic/wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:37 -0400] "GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 91.199.118.59 - - [04/May/2025:23:10:37 -0400] "GET /wp-content/plugins/core-stab/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:38 -0400] "GET /wp-content/themes/alera/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 91.199.118.59 - - [04/May/2025:23:10:38 -0400] "GET /wp-content/themes/rishi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 91.199.118.59 - - [04/May/2025:23:10:38 -0400] "GET /wp-content/themes/sketch/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:38 -0400] "GET /wp-content/themes/thuoc-nam/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 91.199.118.59 - - [04/May/2025:23:10:38 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:38 -0400] "GET /wp-content/themes/wp-pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:39 -0400] "GET /wp-content/themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:39 -0400] "GET /wp-content/themes/zakra/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 91.199.118.59 - - [04/May/2025:23:10:39 -0400] "GET /wp-content/uploads/simple-file-list/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:39 -0400] "GET /admin/upload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 91.199.118.59 - - [04/May/2025:23:10:39 -0400] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:40 -0400] "GET /up/.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:40 -0400] "GET /wp-content/plugins/apikey/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:40 -0400] "GET /wp-content/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:40 -0400] "GET /images/ HTTP/1.1" 200 2047 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:40 -0400] "GET /images/images/w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 91.199.118.59 - - [04/May/2025:23:10:41 -0400] "GET /css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:41 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:41 -0400] "GET /wp-includes/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:41 -0400] "GET /wp-includes/SimplePie/XML/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:41 -0400] "GET /wp-content/uploads/wpr-addons/forms/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:42 -0400] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:42 -0400] "GET /wordpress/wp-admin/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:42 -0400] "GET /wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:42 -0400] "GET /wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:42 -0400] "GET /wp-includes/SimplePie/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:43 -0400] "GET /wp-includes/Text/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:43 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:43 -0400] "GET /wp-includes/customize/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:43 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:43 -0400] "GET /wp-includes/pomo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 91.199.118.59 - - [04/May/2025:23:10:44 -0400] "GET /wp-includes/rest-api/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:44 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:44 -0400] "GET /wp-content/plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:44 -0400] "GET /wp-content/plugins/pwnd/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:44 -0400] "GET /about/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:45 -0400] "GET /plugins/jquery.filer/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:45 -0400] "GET /wp-content/plugins/dummyyummy/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:45 -0400] "GET /wp-content/themes/seotheme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:45 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:45 -0400] "GET /wp-content/plugins/revslider/includes/external/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:46 -0400] "GET /wp-content/plugins/Cache/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:46 -0400] "GET /wp-content/themes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 91.199.118.59 - - [04/May/2025:23:10:46 -0400] "GET /wp-includes/theme-compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:46 -0400] "GET /index/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:46 -0400] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 91.199.118.59 - - [04/May/2025:23:10:46 -0400] "GET /fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:47 -0400] "GET /js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:47 -0400] "GET /routes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:47 -0400] "GET /uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 91.199.118.59 - - [04/May/2025:23:10:47 -0400] "GET /templates/beez3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:47 -0400] "GET /wp-content/themes/digital-download/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:48 -0400] "GET /wp-content/plugins/wp-theme-editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:48 -0400] "GET /templates/atomic/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 91.199.118.59 - - [04/May/2025:23:10:48 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:48 -0400] "GET /wp-includes/assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:48 -0400] "GET /wp-includes/js/jcrop/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:48 -0400] "GET /wp-content/plugins/google-seo-rank/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 91.199.118.59 - - [04/May/2025:23:10:49 -0400] "GET /wp-content/plugins/erin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:49 -0400] "GET /wp-content/maintenance/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 91.199.118.59 - - [04/May/2025:23:10:49 -0400] "GET /wp-content/x/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 91.199.118.59 - - [04/May/2025:23:10:49 -0400] "GET /wp-content/plugins/seooyanz/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:50 -0400] "GET /wp-content/themes/sky-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:50 -0400] "GET /wp-content/plugins/cp-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:50 -0400] "GET /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:50 -0400] "GET /wp-content/uploads/typehub/custom/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:50 -0400] "GET /wp-content/plugins/rencontre/inc/photo_import/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 91.199.118.59 - - [04/May/2025:23:10:51 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 91.199.118.59 - - [04/May/2025:23:10:51 -0400] "GET /wp-content/plugins/pwnd-1/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:51 -0400] "GET /.tmb/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 91.199.118.59 - - [04/May/2025:23:10:51 -0400] "GET /wp-content/plugins/fix/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:51 -0400] "GET /includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 91.199.118.59 - - [04/May/2025:23:10:52 -0400] "GET /themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 43.166.244.192 - - [04/May/2025:23:23:14 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 170.205.30.127 - - [05/May/2025:00:53:36 -0400] "GET /wp-content/plugins/background-image-cropper/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" 18.221.165.30 - - [05/May/2025:02:50:33 -0400] "HEAD /wordpress HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:34 -0400] "HEAD / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:34 -0400] "HEAD /wp HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:35 -0400] "HEAD /bc HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:35 -0400] "HEAD /bk HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:36 -0400] "HEAD /backup HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:36 -0400] "HEAD /old HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:37 -0400] "HEAD /new HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:37 -0400] "HEAD /main HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 18.221.165.30 - - [05/May/2025:02:50:37 -0400] "HEAD /home HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 34.148.237.163 - - [05/May/2025:04:26:36 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 34.148.237.163 - - [05/May/2025:04:26:42 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 68.154.0.216 - - [05/May/2025:05:23:35 -0400] "GET /chosen.php?p= HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.154.0.216 - - [05/May/2025:05:23:36 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.154.0.216 - - [05/May/2025:05:23:36 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.154.0.216 - - [05/May/2025:05:23:36 -0400] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.154.0.216 - - [05/May/2025:05:23:36 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 43.153.104.196 - - [05/May/2025:05:37:33 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 66.249.74.42 - - [05/May/2025:08:27:00 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.79.36 - - [05/May/2025:08:27:27 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.95 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.79.36 - - [05/May/2025:08:27:37 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.95 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.79.35 - - [05/May/2025:08:27:38 -0400] "GET /favicon.ico HTTP/1.1" 404 1251 "-" "Googlebot-Image/1.0" 149.88.23.87 - - [05/May/2025:10:42:55 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:42:55 -0400] "GET /index/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:56 -0400] "GET /.ll/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:56 -0400] "GET /.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:56 -0400] "GET /wp-content/plugins/async-upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:42:57 -0400] "GET /new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:42:57 -0400] "GET /pages.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:57 -0400] "GET /wp-editor.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:42:57 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:42:57 -0400] "GET /ge.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:58 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:58 -0400] "GET /templatesdex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:42:58 -0400] "GET /click.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:42:58 -0400] "GET /.lu/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:42:58 -0400] "GET /mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:59 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:42:59 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:42:59 -0400] "GET /wp-mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:42:59 -0400] "GET /randkeyword.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:00 -0400] "GET /wp-content/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:00 -0400] "GET /lock.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:00 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:00 -0400] "GET /ws.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:00 -0400] "GET /x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:01 -0400] "GET /login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:01 -0400] "GET /eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:01 -0400] "GET /wp-admin/images/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:01 -0400] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:01 -0400] "GET /test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:43:02 -0400] "GET /wp-admin/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:02 -0400] "GET /cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:02 -0400] "GET /baxa1.phP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:03 -0400] "GET /wp-admin/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:03 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:03 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:03 -0400] "GET /themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:03 -0400] "GET /wp-includes/ID3/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:04 -0400] "GET /wp-includes/Text/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:04 -0400] "GET /wp-admin/network/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:04 -0400] "GET /rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:05 -0400] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:05 -0400] "GET /wp-admin/js/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:05 -0400] "GET /.well-known/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:43:05 -0400] "GET /chosen.phppload HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:05 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:06 -0400] "GET /sxx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:06 -0400] "GET /wp-admin/maint/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:06 -0400] "GET /baxa1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:06 -0400] "GET /classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:06 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:07 -0400] "GET /about/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:43:07 -0400] "GET /user/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:07 -0400] "GET /wp-content/themes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:08 -0400] "GET /wp-includes/css/dist/niil.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:08 -0400] "GET /moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:08 -0400] "GET /wp-admin/css/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:08 -0400] "GET /wp-admin/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:09 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:09 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:09 -0400] "GET /pgs.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:43:09 -0400] "GET /shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:09 -0400] "GET /mjq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:10 -0400] "GET /content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:10 -0400] "GET /readme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:10 -0400] "GET /litespeed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:10 -0400] "GET /bypass.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:10 -0400] "GET /.qiodeme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:11 -0400] "GET /ad.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:11 -0400] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:11 -0400] "GET /wp-content/upgrade/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:11 -0400] "GET /df.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:12 -0400] "GET /jindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:12 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:12 -0400] "GET /Files/Mo0n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:12 -0400] "GET /wp-content/mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:13 -0400] "GET /bv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:13 -0400] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:13 -0400] "GET /403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:14 -0400] "GET /bk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:14 -0400] "GET /wp-includes/fonts/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:43:14 -0400] "GET /wp-content/languages/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:15 -0400] "GET /wp-atom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:15 -0400] "GET /hj.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:15 -0400] "GET /sym.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:16 -0400] "GET /lp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:16 -0400] "GET /Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:43:16 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:16 -0400] "GET /yt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:16 -0400] "GET /wp-conflg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:17 -0400] "GET /x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:17 -0400] "GET /hehehehe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:17 -0400] "GET /.github/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:17 -0400] "GET /default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:17 -0400] "GET /bn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:18 -0400] "GET /wordpress/update/wpupex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:18 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:18 -0400] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:18 -0400] "GET /ini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:19 -0400] "GET /wp-includes/rest-api/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:19 -0400] "GET /shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:19 -0400] "GET /aa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:19 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:19 -0400] "GET /wp-admin/includes/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:43:20 -0400] "GET /wp-includes/ID3/about.php/wp-content/x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:20 -0400] "GET /wpn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:20 -0400] "GET /wp-admin/css/colors/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:20 -0400] "GET /wp-admin/js/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:21 -0400] "GET /wp-includes/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:21 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:21 -0400] "GET /wp-content/themes/xc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:21 -0400] "GET /baxa1.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:22 -0400] "GET /av.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:22 -0400] "GET /network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:22 -0400] "GET /wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:22 -0400] "GET /wp-content/upgrade/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:23 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:23 -0400] "GET /wp-includes/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:23 -0400] "GET /wp-content/Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:23 -0400] "GET /vv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:23 -0400] "GET /wp-includes/style-engine/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:24 -0400] "GET /wp-user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:24 -0400] "GET /wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:24 -0400] "GET /.well-known/acme-challenge/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:24 -0400] "GET /assets/css/403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:43:24 -0400] "GET /error.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:25 -0400] "GET /ff.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:25 -0400] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:43:25 -0400] "GET /wp-content/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:25 -0400] "GET /credits.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:26 -0400] "GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:26 -0400] "GET /wp-includes/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:26 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:26 -0400] "GET /wp-includes/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:26 -0400] "GET /wp-admin/maint/flower.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:27 -0400] "GET /wp-includes/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:27 -0400] "GET /wp-tinymce.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:27 -0400] "GET /wp-links.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:28 -0400] "GET /css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:28 -0400] "GET /retu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:28 -0400] "GET /aw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:28 -0400] "GET /lv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:29 -0400] "GET /wp-includes/block-patterns/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:29 -0400] "GET /dr.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:43:29 -0400] "GET /randkeyword.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:29 -0400] "GET /wp-admin/Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:30 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:30 -0400] "GET /ay.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:30 -0400] "GET /wordpress/wp-admin/wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:30 -0400] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:31 -0400] "GET /wp-content/plugins/ioptimization/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:43:31 -0400] "GET /wp-content/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:43:31 -0400] "GET /wp-admin/network/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:32 -0400] "GET /wp-admin/defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:32 -0400] "GET /mini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:43:32 -0400] "GET /yy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:33 -0400] "GET /.well-known/pki-validation/eew.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:33 -0400] "GET /wp-includes/IXR/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:43:33 -0400] "GET /log.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:33 -0400] "GET /tr.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:34 -0400] "GET /wp-content/themes/pridmag/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:43:34 -0400] "GET /wp-includes/css/dist/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:35 -0400] "GET /byp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:35 -0400] "GET /aq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:35 -0400] "GET /yu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:35 -0400] "GET /gt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:36 -0400] "GET /duck.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:43:36 -0400] "GET /op.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:43:36 -0400] "GET /l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:36 -0400] "GET /doc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:37 -0400] "GET /update/wpupex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:43:37 -0400] "GET /m.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:37 -0400] "GET /2index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:37 -0400] "GET /wp-content/themes/sky-pro/js.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:38 -0400] "GET /ayk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:38 -0400] "GET /alfanew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:43:38 -0400] "GET /wp-includes/wp-class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:43:38 -0400] "GET /er.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:43:39 -0400] "GET /wp-includes/PHPMailer/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:39 -0400] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:39 -0400] "GET /ssa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:43:39 -0400] "GET /.well-known/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:39 -0400] "GET /hardenX.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:40 -0400] "GET /.qiofetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:40 -0400] "GET /function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:40 -0400] "GET /wp-content/x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:40 -0400] "GET /wp-admin/maint/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:41 -0400] "GET /cc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:41 -0400] "GET /images/eew.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:41 -0400] "GET /new2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:43:41 -0400] "GET /class.api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:41 -0400] "GET /wp-content/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:42 -0400] "GET /ok.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:42 -0400] "GET /wp-content/mu-plugins/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:42 -0400] "GET /backup/sid.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:42 -0400] "GET /ki.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:42 -0400] "GET /wp-includes/assets/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:43 -0400] "GET /.well-known/acme-challenge/upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:43 -0400] "GET /about/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:43 -0400] "GET /wp-admin/images/wp-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:43 -0400] "GET /wp-content/plugins/cp-pro/js.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:43 -0400] "GET /wp-includes/css/dist/components/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:44 -0400] "GET /wp-includes/customize/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:43:44 -0400] "GET /tt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:44 -0400] "GET /uu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:44 -0400] "GET /wp-admin/x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:43:45 -0400] "GET /.well-known/pki-validation/xmrlpc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:45 -0400] "GET /dir.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:45 -0400] "GET /wp-admin/options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:46 -0400] "GET /.well-known/acme-challenge/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:46 -0400] "GET /xx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:46 -0400] "GET /css/xa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:46 -0400] "GET /sk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:46 -0400] "GET /wordpress/wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:47 -0400] "GET /item.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:43:47 -0400] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:47 -0400] "GET /wordpress/wp-includes/wp-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:47 -0400] "GET /alfa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:48 -0400] "GET /.well-known/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:43:48 -0400] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:48 -0400] "GET /bgf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:48 -0400] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:49 -0400] "GET /an.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:49 -0400] "GET /wp-includes/pomo/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:49 -0400] "GET /wp-content/plugins/core/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:43:49 -0400] "GET /test.php/wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:49 -0400] "GET /ova.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:43:50 -0400] "GET /plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:50 -0400] "GET /wp-content/themes/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:50 -0400] "GET /worksec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:50 -0400] "GET /options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:50 -0400] "GET /wp-blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:51 -0400] "GET /wp-info.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:43:51 -0400] "GET /la.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:51 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:43:51 -0400] "GET /wp-includes/fonts/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:52 -0400] "GET /wp-content/plugins/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:52 -0400] "GET /wp-includes/rest-api/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:52 -0400] "GET /as.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:52 -0400] "GET /images.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:52 -0400] "GET /up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:53 -0400] "GET /index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:53 -0400] "GET /wp-content/plugins/wp-help/mini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:53 -0400] "GET /indeks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:53 -0400] "GET /wp-content/plugins/seoo/xynz1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:54 -0400] "GET /wp-content/tmpls.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:54 -0400] "GET /wp-content/themes/travel/issue.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:54 -0400] "GET /wp-admin/js/widgets/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:54 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/udd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:43:54 -0400] "GET /wp-includes/Requests/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:55 -0400] "GET /wp-includes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:55 -0400] "GET /retu11.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:55 -0400] "GET /back.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:55 -0400] "GET /wp-content/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:56 -0400] "GET /wp-head.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:56 -0400] "GET /images/admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:56 -0400] "GET /wp-content/shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:56 -0400] "GET /wp-admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:56 -0400] "GET /system_log.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:57 -0400] "GET /goods.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:57 -0400] "GET /wp-admin/css/colors/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:57 -0400] "GET /rt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:57 -0400] "GET /atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:57 -0400] "GET /wp-admin/maint/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:43:58 -0400] "GET /.well-known/acme-challenge/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:58 -0400] "GET /admin/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:43:58 -0400] "GET /wp-content/themes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:43:58 -0400] "GET /wp-admin/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:43:58 -0400] "GET /.well-known/pki-validation/.qiodetme.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:59 -0400] "GET /makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:59 -0400] "GET /hjk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:43:59 -0400] "GET /wp-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:43:59 -0400] "GET /ac.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:43:59 -0400] "GET /w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:00 -0400] "GET /inc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:00 -0400] "GET /wp-includes/js/plupload/jquery.Jcrop.min.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:00 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:00 -0400] "GET /wp-admin/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:01 -0400] "GET /wp-admin/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:01 -0400] "GET /wp-admin/css/about.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:01 -0400] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:01 -0400] "GET /install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:01 -0400] "GET /wp-content/plugins/seox/randkeyword.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:02 -0400] "GET /wp-content/plugins/pwnd/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:02 -0400] "GET /index/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:02 -0400] "GET /aj.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:02 -0400] "GET /wp-header.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:03 -0400] "GET /wp-admin/includes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:03 -0400] "GET /hui.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:03 -0400] "GET /oo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:44:03 -0400] "GET /data.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:04 -0400] "GET /wp-includes/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:04 -0400] "GET /wp-admin/maint/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:04 -0400] "GET /randkeyword.PhP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:04 -0400] "GET /ss.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:04 -0400] "GET /xml.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:05 -0400] "GET /wp-admin/images/lufix.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:05 -0400] "GET /customize.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:05 -0400] "GET /a.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:05 -0400] "GET /wp-content/item.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:05 -0400] "GET /ui.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:06 -0400] "GET /b.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:06 -0400] "GET /wp-includes/css/dist/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:06 -0400] "GET /images/class-config.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:06 -0400] "GET /as/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:07 -0400] "GET /kl.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:07 -0400] "GET /wp-admin/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:07 -0400] "GET /wsoyanzfv3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:09 -0400] "GET /wp-admin/Files/Mo0n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:09 -0400] "GET /index/gu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:09 -0400] "GET /lk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:09 -0400] "GET /mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:10 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:10 -0400] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:10 -0400] "GET /update/wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:10 -0400] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:11 -0400] "GET /ioxi002.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:11 -0400] "GET /wp-content/themes/aahana/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:11 -0400] "GET /wp-includes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:11 -0400] "GET /mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:12 -0400] "GET /wp-content/themes/seotheme/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:12 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:44:12 -0400] "GET /wp-trackback.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:12 -0400] "GET /cgi-bin/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:13 -0400] "GET /edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:13 -0400] "GET /wp-includes/wp-atom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:13 -0400] "GET /.well-known/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:13 -0400] "GET /fm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:13 -0400] "GET /wp-cron.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:14 -0400] "GET /sidwsi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:14 -0400] "GET /wpupp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:14 -0400] "GET /upmdxpcz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:14 -0400] "GET /wp-admin/includes/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:15 -0400] "GET /blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:15 -0400] "GET /wp-admin/css/colors/coffee/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:15 -0400] "GET /yanz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:15 -0400] "GET /inputs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:16 -0400] "GET /wp-includes/Requests/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:16 -0400] "GET /cgi-bin/index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:16 -0400] "GET /wp-includes/makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:16 -0400] "GET /wp-includes/block-supports/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:17 -0400] "GET /wp-includes/css/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:17 -0400] "GET /xpfkcrpp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:17 -0400] "GET /wp-content/uploads/2023/a22.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:44:18 -0400] "GET /alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:18 -0400] "GET /wp-includes/images/smilies/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:44:19 -0400] "GET /wordpress/update/wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:19 -0400] "GET /wp-admin/user/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:19 -0400] "GET /l.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:19 -0400] "GET /wp-admin/images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:19 -0400] "GET /jp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:20 -0400] "GET /.well-known/acme-challenge/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:20 -0400] "GET /wp-admin/maint/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:20 -0400] "GET /wp-admin/css/colors/coffee/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:20 -0400] "GET /wp-set.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:20 -0400] "GET /link.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:44:21 -0400] "GET /.well-known/pki-validation/cloud.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:21 -0400] "GET /.well-known/acme-challenge/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:21 -0400] "GET /worm0.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:21 -0400] "GET /admin/upload/css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:21 -0400] "GET /web.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:22 -0400] "GET /bak.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:22 -0400] "GET /wp-content/plugins/azra-tn/wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:22 -0400] "GET /xmlrpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:22 -0400] "GET /img/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:23 -0400] "GET /license.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:23 -0400] "GET /wp-signup.php?Fox=sQFLZ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:23 -0400] "GET /wp-content/themes/alera/alpha.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:23 -0400] "GET /13.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:23 -0400] "GET /wp-content/plugins/work-list/lang.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:24 -0400] "GET /upfile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:24 -0400] "GET /uzkeerfe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:44:24 -0400] "GET /fw.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:24 -0400] "GET /contact.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:44:25 -0400] "GET /wp-content/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:25 -0400] "GET /wp-includes/blocks/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:25 -0400] "GET /ynz.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:25 -0400] "GET /cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:26 -0400] "GET /ymhrwpmq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:26 -0400] "GET /contents.php/lv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:26 -0400] "GET /yjsmnati.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:26 -0400] "GET /cgi-bin/cloud.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:26 -0400] "GET /wp-links-opml.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:27 -0400] "GET /index.php?x=ooo HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:27 -0400] "GET /wp-content/banners/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:27 -0400] "GET /post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:44:27 -0400] "GET /wp-admin/network/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:27 -0400] "GET /wp-admin/images/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:28 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:28 -0400] "GET /hehe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:28 -0400] "GET /wp-content/plugins/erin/pgs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:28 -0400] "GET /wp-content/plugins/linkpreview/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:28 -0400] "GET /css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:29 -0400] "GET /wp-includes/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:29 -0400] "GET /wp-content/plugins/simple/simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:44:29 -0400] "GET /lufix.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:29 -0400] "GET /about.php?525 HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:30 -0400] "GET /wp-admin/images/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:30 -0400] "GET /wp-content/plugins/seoplugins/db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:44:30 -0400] "GET /tinyfilemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:30 -0400] "GET /wp-admin/images/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:30 -0400] "GET /cgi-bin/file.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:31 -0400] "GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:31 -0400] "GET /wp-admin/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:31 -0400] "GET /files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:31 -0400] "GET /ms.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:31 -0400] "GET /insert_activity_db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:32 -0400] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:32 -0400] "GET /.well-known/acme-challenge/makeasmtp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:32 -0400] "GET /update/gely.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:32 -0400] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:44:32 -0400] "GET /text.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:44:33 -0400] "GET /.well-known/pki-validation/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:33 -0400] "GET /wp-includes/customize/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:33 -0400] "GET /saka.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:33 -0400] "GET /.well-known/acme-challenge/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:34 -0400] "GET /1index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:34 -0400] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:34 -0400] "GET /wp-admin/user/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:34 -0400] "GET /crack.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:35 -0400] "GET /.well-known/acme-challenge/mariju.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:35 -0400] "GET /bb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:44:35 -0400] "GET /2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:35 -0400] "GET /wp-includes/js/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:35 -0400] "GET /wp-admin/admin-ajax.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:36 -0400] "GET /components/com_joomdle/assets/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:36 -0400] "GET /cmd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:36 -0400] "GET /upload_shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:36 -0400] "GET /var/www/html/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:37 -0400] "GET /uploads/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:37 -0400] "GET /files/shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:37 -0400] "GET /webdb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:37 -0400] "GET /xp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:37 -0400] "GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:38 -0400] "GET /bs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:38 -0400] "GET /update-core.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:38 -0400] "GET /wp-includes/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:38 -0400] "GET /wp-includes/blocks/site-title/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:38 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:39 -0400] "GET /.well-known/acme-challenge/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:39 -0400] "GET /.well-known/pki-validation/2index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:39 -0400] "GET /assets/images/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:39 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:39 -0400] "GET /adminer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:40 -0400] "GET /wp-content/plugins/ioxi/alfa-ioxi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:40 -0400] "GET /wp-admin/css/colors/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:44:40 -0400] "GET /wp-admin/user/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:44:40 -0400] "GET /htaccess.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:40 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:41 -0400] "GET /.well-known/acme-challenge/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:41 -0400] "GET /cgi-bin/cgi-bin/about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:41 -0400] "GET /cgi-bin/radio.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:41 -0400] "GET /wp-ncludes/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:41 -0400] "GET /.qiodetme.php/goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:42 -0400] "GET /wp-content/themes/hello-element/footer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:42 -0400] "GET /wp-admin/maint/min.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:42 -0400] "GET /wp-admin/includes/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:42 -0400] "GET /wp-admin/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:43 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:44:43 -0400] "GET /wp-content/uploads/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:44:43 -0400] "GET /wp-includes/wp-widgets.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:43 -0400] "GET /.well-known/pki-validation/sxx.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:43 -0400] "GET /packed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:44 -0400] "GET /max.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:44 -0400] "GET /menu.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:44 -0400] "GET /n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:44 -0400] "GET /saka.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:44 -0400] "GET /wp-content/uploads/2023/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:45 -0400] "GET /marijuana.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:44:45 -0400] "GET /.well-known/acme-challenge/edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:45 -0400] "GET /wp-content/plugins/Core-EconX/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:45 -0400] "GET /wp-includes/certificates/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:45 -0400] "GET /.well-known/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:44:46 -0400] "GET /wp-content/uploads/GzyYU.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:46 -0400] "GET /wp-includes/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:46 -0400] "GET /wp-admin/js/widgets/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:46 -0400] "GET /wp-admin/network/gzak2w.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:46 -0400] "GET /components/com_jea/views/form/tmpl/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:47 -0400] "GET /test/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:47 -0400] "GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:47 -0400] "GET /st.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:47 -0400] "GET /assets/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:44:47 -0400] "GET /wp-add.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:48 -0400] "GET /wp-content/uploads/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:48 -0400] "GET /0x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:48 -0400] "GET /.well-known/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:48 -0400] "GET /wp-admin/images/sidebarh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:44:49 -0400] "GET /nav-menus.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:49 -0400] "GET /wp-content/plugins/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:49 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:49 -0400] "GET /cgi-bin/plugins.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:44:50 -0400] "GET /worksec.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:50 -0400] "GET /.well-known/pki-validation/index.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:44:50 -0400] "GET /lock360.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:44:50 -0400] "GET /wp-admin/user/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:50 -0400] "GET /wp-content/plugins/Core-Econ/upH.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:44:51 -0400] "GET /pegi.PhP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:51 -0400] "GET /cgi-bin/mariju.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:51 -0400] "GET /wp-includes/blocks/button/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:51 -0400] "GET /wp-content/plugins/apikey/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:51 -0400] "GET /css/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:52 -0400] "GET /wp-content/uploads/2022/bidlbdgp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:52 -0400] "GET /wp-content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:52 -0400] "GET /components/lig.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:44:52 -0400] "GET /wp-content/updates.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:53 -0400] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:53 -0400] "GET /cgi-bin/admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:53 -0400] "GET /.well-known/acme-challenge/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:54 -0400] "GET /network.php4 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:54 -0400] "GET /wp-admin/network/class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:54 -0400] "GET /.well-known/pki-validation/webdb.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:54 -0400] "GET /delpaths.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:44:54 -0400] "GET /wp-admin/alfa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:44:55 -0400] "GET /wp-admin/css/colors/coffee/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:55 -0400] "GET /.well-known/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:44:55 -0400] "GET /cgi-bin/moon.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:55 -0400] "GET /wp-includes/block-supports/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:56 -0400] "GET /users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:56 -0400] "GET /.well-known/pki-validation/file.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:56 -0400] "GET /init.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:56 -0400] "GET /wp-includes/css/options.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:56 -0400] "GET /wp-includes/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:57 -0400] "GET /wp-admin/images/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:57 -0400] "GET /wp-includes/SimplePie/Cache/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:57 -0400] "GET /widgets.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:57 -0400] "GET /cgi-bin/xdrwxeax.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:44:58 -0400] "GET /wp-includes/mani.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:44:58 -0400] "GET /.well-known/pki-validation/ssl.php?xsec=blocker HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:58 -0400] "GET /xl2023.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:58 -0400] "GET /.well-known/acme-challenge/license.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:44:58 -0400] "GET /wp-admin/network/index.php4 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:44:59 -0400] "GET /ova.php4https:/worldbdsm.net/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:45:00 -0400] "GET /css/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:00 -0400] "GET /.well-known/pki-validation/wp-sigunq.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:00 -0400] "GET /cjfuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:00 -0400] "GET /.well-known/functions.schedules.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:45:00 -0400] "GET /wzy.php?action=door123 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:01 -0400] "GET /.well-known/acme-challenge/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:01 -0400] "GET /.well-known/acme-challenge/doc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:01 -0400] "GET /wp-includes/packed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:01 -0400] "GET /product.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:02 -0400] "GET /.well-known/acme-challenge/blurbs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:02 -0400] "GET /wp-includes/certificates/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:02 -0400] "GET /wp-content/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:02 -0400] "GET /.well-known/pki-validation/doc.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:03 -0400] "GET /checkbox.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:03 -0400] "GET /wp-includes/SimplePie/lig.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:03 -0400] "GET /.well-known/acme-challenge/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:04 -0400] "GET /wp-files.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:04 -0400] "GET /.well-known/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:04 -0400] "GET /black.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:04 -0400] "GET /wp-includes/Requests/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:04 -0400] "GET /wp-includes/mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:05 -0400] "GET /wp-load.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:45:05 -0400] "GET /buy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:05 -0400] "GET /.well-known/pki-validation/classwithtostring.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:05 -0400] "GET /word.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:06 -0400] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:06 -0400] "GET /wp-content/plugins/sid/sidwso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:06 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/fonts/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:06 -0400] "GET /wp-includes/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:45:06 -0400] "GET /wp-admin/css/colors/blue/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:07 -0400] "GET /.well-known/pki-validation/scripts.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:45:07 -0400] "GET /assets/images/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:07 -0400] "GET /wp-includes/fonts/parx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:08 -0400] "GET /gecko.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:08 -0400] "GET /cgi-bin/install.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:09 -0400] "GET /wp-includes/Text/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:09 -0400] "GET /wp-includes/block-patterns/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:09 -0400] "GET /modules/mod_footer/tmpl/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:10 -0400] "GET /wp-admin/wp-configs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:10 -0400] "GET /f0x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:11 -0400] "GET /templates/cassiopeia/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:11 -0400] "GET /.well-known/acme-challenge/iR7SzrsOUEP.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:11 -0400] "GET /wp-content/uploads/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:12 -0400] "GET /.well-known/acme-challenge/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:45:12 -0400] "GET /wp-includes/fonts/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:12 -0400] "GET /wp-includes/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:45:13 -0400] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:13 -0400] "GET /sh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:45:13 -0400] "GET /wp-admin/images/thumbs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:13 -0400] "GET /db.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:14 -0400] "GET /wp-content/plugins/elementor/wp-wyrvg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:45:15 -0400] "GET /wp-includes/css/dist/editor/fxp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:15 -0400] "GET /wp-admin/network/back.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:15 -0400] "GET /wp-admin/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:16 -0400] "GET /wp-includes/customize/lmfi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:16 -0400] "GET /version.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:16 -0400] "GET /wp-content HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:16 -0400] "GET /wp-admin/wp-admin/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:45:17 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:17 -0400] "GET /wp-includes/IXR/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:17 -0400] "GET /wp-admin/css/colors/blue/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:18 -0400] "GET /wp-admin/images/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:18 -0400] "GET /wp-content/themes/pridmag/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:18 -0400] "GET /wp-admin/css/colors/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:18 -0400] "GET /.well-known/acme-challenge/aboudt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:19 -0400] "GET /wp-includes/certificates/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:19 -0400] "GET /mm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:20 -0400] "GET /wp-includes/css/chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:20 -0400] "GET /indeex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:20 -0400] "GET /sys.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:20 -0400] "GET /wp-includes/customize/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:21 -0400] "GET /wp-includes/certificates/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:21 -0400] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:21 -0400] "GET /wp-admin/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:45:22 -0400] "GET /templates/luuf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:22 -0400] "GET /cgi-bin/users.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:22 -0400] "GET /wp-admin/network/ayk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:45:22 -0400] "GET /.well-known/pki-validation/baja.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:22 -0400] "GET /sys.phhttp:/marykelledy.com/cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:23 -0400] "GET /.well-known/pki-validation/radio.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:23 -0400] "GET /wp-admin/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:45:23 -0400] "GET /.well-known/zaza.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:45:23 -0400] "GET /.well-known/acme-challenge/shimo.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:24 -0400] "GET /wp-includes/images/smilies/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:24 -0400] "GET /max.phhttp:/sushiavenue.fr/alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:24 -0400] "GET /.well-known/webdb.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:24 -0400] "GET /edit-tags.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:45:25 -0400] "GET /wp-includes/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:25 -0400] "GET /wp-l0gin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:25 -0400] "GET /wp-content/plugins/clara/clara.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:25 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.phpcom.au/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:26 -0400] "GET /main.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:26 -0400] "GET /wp-admin/css/colors/modern/git.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:26 -0400] "GET /wp-includes/wp-includes/atomlib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:45:27 -0400] "GET /wp-includes/images/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:45:27 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:45:27 -0400] "GET /wp-content/uploads/2023/user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:45:27 -0400] "GET /.well-known/pki-validation/iR7SzrsOUEP.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:45:27 -0400] "GET /wp-content/upgrade/ss.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:28 -0400] "GET /wp-includes/SimplePie/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:45:28 -0400] "GET /wp-includes/shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:28 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:28 -0400] "GET /pgs.phP HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:29 -0400] "GET /cgi-bin/iR7SzrsOUEP.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:29 -0400] "GET /wp-content/themes/tflow/goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:29 -0400] "GET /wordpress/wp-content/uploads/_input_3_css.phtml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:30 -0400] "GET /.well-known/bs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:30 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:30 -0400] "GET /wp-includes/images/file1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:30 -0400] "GET /wp-activate.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:30 -0400] "GET /wp-includes/ID3/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:31 -0400] "GET /wp-admin/js/widgets/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:31 -0400] "GET /wp-includes/css/dist/wp-l0gin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:31 -0400] "GET /fox.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:31 -0400] "GET /wp-admin/images/install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:32 -0400] "GET /ALFA_DATA/alfacgiapi/wp-conflg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:32 -0400] "GET /.well-known/pki-validation/flower.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:32 -0400] "GET /class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:32 -0400] "GET /wp-blog-header.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:33 -0400] "GET /wp-admin/images/autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:45:33 -0400] "GET /.well-known/pki-validation/wrapper.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:45:33 -0400] "GET /wp-content/uploads/lmfi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:33 -0400] "GET /index2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:34 -0400] "GET /.well-known/pki-validation/web.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:34 -0400] "GET /.well-known/pki-validation/index1.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:45:34 -0400] "GET /nf_tracking.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:34 -0400] "GET /woh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:34 -0400] "GET /wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:35 -0400] "GET /bala.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:35 -0400] "GET /tiny.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:35 -0400] "GET /wpkey.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:35 -0400] "GET /goat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:36 -0400] "GET /masterjob/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:36 -0400] "GET /crop.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:45:36 -0400] "GET /webshell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:36 -0400] "GET /filemanager/dialog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:37 -0400] "GET /you.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:37 -0400] "GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:37 -0400] "GET /wp-content/uploads/2023/05/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:37 -0400] "GET /.well-known/fierzashell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:45:38 -0400] "GET /wp-content/themes/wp-classic/inc/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:38 -0400] "GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:38 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:38 -0400] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:39 -0400] "GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:45:39 -0400] "GET /ioxi01.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:39 -0400] "GET /tinyfilemanager/tinyfilemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:39 -0400] "GET /ty.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:40 -0400] "GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:40 -0400] "GET /profile.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:45:40 -0400] "GET /wp-content/plugins/background-image-cropper/ups.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:40 -0400] "GET /sts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:45:41 -0400] "GET /include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:41 -0400] "GET /leaf.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:45:41 -0400] "GET /wp-content/db-cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:42 -0400] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:43 -0400] "GET /yrlgvupk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:43 -0400] "GET /wp-content/themes/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:43 -0400] "GET /filemanager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:43 -0400] "GET /wp-content/plugins/TOPXOH/wDR.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:44 -0400] "GET /wp-file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:44 -0400] "GET /ova-wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:44 -0400] "GET /fm1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:44 -0400] "GET /form.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:45 -0400] "GET /wpup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:45:45 -0400] "GET /wp-2018.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:45 -0400] "GET /siti.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:45 -0400] "GET /abe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:45:45 -0400] "GET /insoamv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:46 -0400] "GET /wp-p.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:46 -0400] "GET /wp-admin/includes/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:47 -0400] "GET /css/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:47 -0400] "GET /wp-admin/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:48 -0400] "GET /wp-content/themes/astra/inc/ki1k.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:45:48 -0400] "GET /wp-admin/maint/moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:45:49 -0400] "GET /wp-content/plugins/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:49 -0400] "GET /.tmb/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:50 -0400] "GET /.well-known/alfanew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:50 -0400] "GET /wp-admin/css/colors/coffee/lofter.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:45:51 -0400] "GET /wp-includes/Requests/Auth/images.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:51 -0400] "GET /wp-content/themes/seotheme/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:45:51 -0400] "GET /.tmb/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:52 -0400] "GET /wp-includes/theme-compat/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:53 -0400] "GET /wp-admin/network/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:45:54 -0400] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:55 -0400] "GET /wp-includes/certificates/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:45:55 -0400] "GET /bless.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:55 -0400] "GET /wordpress/update/bibil.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:56 -0400] "GET /avaa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:56 -0400] "GET /wp-content/file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:45:56 -0400] "GET /update/403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:57 -0400] "GET /wp-content/plugins/seooyanz/wsoyanzv2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:57 -0400] "GET /about/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:45:57 -0400] "GET /wp-content/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:45:57 -0400] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:58 -0400] "GET /wp-content/upgrade-temp-backup/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:58 -0400] "GET /wp-content/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:58 -0400] "GET /wp-includes/IXR/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:58 -0400] "GET /wp-includes/pomo/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:59 -0400] "GET /wp-includes/404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:45:59 -0400] "GET /xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:46:00 -0400] "GET /user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:00 -0400] "GET /wp-content/languages/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:00 -0400] "GET /config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:01 -0400] "GET /goat1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:02 -0400] "GET /wp-admin/xmrlpc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:02 -0400] "GET /wp-content/plugins/fix/1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:03 -0400] "GET /wp-includes/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:03 -0400] "GET /wp-admin/themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:46:03 -0400] "GET /wp-admin/network/word.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:03 -0400] "GET /extracte_wordprees/dirfunc/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:46:04 -0400] "GET /wp-admih.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:04 -0400] "GET /wp-content/plugins/shell/noimg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:04 -0400] "GET /land.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:04 -0400] "GET /hobi.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:05 -0400] "GET /wp-content/plugins/Core-Econ/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:46:05 -0400] "GET /x7.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:05 -0400] "GET /wp-admin/network/abuot.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:46:05 -0400] "GET /.well-known/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:06 -0400] "GET /FoxWSOv1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:46:06 -0400] "GET /Patrick.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:06 -0400] "GET /modules/karakaroa/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:06 -0400] "GET /wp-includes/images/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:07 -0400] "GET /abuot.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:07 -0400] "GET /black2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:07 -0400] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:07 -0400] "GET /wp-content/plugins/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:46:08 -0400] "GET /jkaeeehs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:08 -0400] "GET /.well-known/pki-validation/wp-login.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:08 -0400] "GET /wp-includes/wp-load.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:08 -0400] "GET /wp-admin/includes/manager.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:09 -0400] "GET /vendor/guzzlehttp/alfa-rex.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:09 -0400] "GET /wp-admin/meta/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:09 -0400] "GET /wp-content/plugins/ttxecy/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:46:09 -0400] "GET /wp-Includes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:09 -0400] "GET /include/bussubmit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:10 -0400] "GET /map.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:10 -0400] "GET /olux.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:10 -0400] "GET /wp-includespreviews.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:11 -0400] "GET /repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:11 -0400] "GET /wp-admin/images/module.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:11 -0400] "GET /wp-includes/radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:11 -0400] "GET /admin/controller/extension/wpm.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:11 -0400] "GET /payout.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:12 -0400] "GET /wp_info.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:12 -0400] "GET /wp-content/upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:12 -0400] "GET /xleet.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:12 -0400] "GET /by.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:46:12 -0400] "GET /wp-content/plugins/Cache/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:13 -0400] "GET /wp-includes/sodium_compat/src/Core/Curve25519/Ge/wp_blog.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:13 -0400] "GET /wp-admin/includes/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:13 -0400] "GET /wp-content/up.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:46:13 -0400] "GET /wp-includes/blocks/table/int/tmpl/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:46:13 -0400] "GET /wp-admin/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:14 -0400] "GET /wp-content/plugins/ccx/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:46:14 -0400] "GET /admin/controller/extension/extension/Not_Found.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:14 -0400] "GET /google.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:46:14 -0400] "GET /sidwso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:46:15 -0400] "GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:15 -0400] "GET /wp-includes/Requests/Text/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:15 -0400] "GET /wp-includes/Requests/Text/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:46:15 -0400] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:15 -0400] "GET /wp-includes/random_compat/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:46:16 -0400] "GET /style2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:16 -0400] "GET /wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:16 -0400] "GET /wp-scripts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:16 -0400] "GET /adminfuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:17 -0400] "GET /comfunctions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:17 -0400] "GET /epinyins.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:46:17 -0400] "GET /filefuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:17 -0400] "GET /hinfofuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:18 -0400] "GET /qfunctions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:18 -0400] "GET /qinfofuns.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:18 -0400] "GET /thoms.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:46:18 -0400] "GET /postnews.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:18 -0400] "GET /wp-config-sample.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:19 -0400] "GET /admin-ajax.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:19 -0400] "GET /ms-themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:19 -0400] "GET /my-sites.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:19 -0400] "GET /media.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:20 -0400] "GET /admin-post.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:20 -0400] "GET /options-head.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:20 -0400] "GET /revision.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:20 -0400] "GET /term.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:21 -0400] "GET /wp-pano.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:21 -0400] "GET /xt/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:21 -0400] "GET /moded.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:21 -0400] "GET /wp-includes/images/include.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:21 -0400] "GET /wp-content/themes/signify/firkon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:22 -0400] "GET /upgrade.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:22 -0400] "GET /gh.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:22 -0400] "GET /head.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:22 -0400] "GET /index1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:23 -0400] "GET /theme-insqbzk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:23 -0400] "GET /good.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:23 -0400] "GET /wp-22.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:23 -0400] "GET /wsoyanz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:23 -0400] "GET /wp-includes/fonts/css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:24 -0400] "GET /wp-content/plugins/envato-market/inc/class-envato-market-api.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:24 -0400] "GET /wp-admin/network/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:46:24 -0400] "GET /css/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:24 -0400] "GET /wp-admin/css/colors/coffee/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:25 -0400] "GET /wp-admin/css/colors/blue/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:25 -0400] "GET /wp-admin/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:46:25 -0400] "GET /wp-content/plugins/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:26 -0400] "GET /wp-includes/wso112233.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:26 -0400] "GET /.well-known/bala.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:46:26 -0400] "GET /wp-content/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:26 -0400] "GET /wp-admin/repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:26 -0400] "GET /wp-includes/repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:27 -0400] "GET /wp-content/repeater.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:27 -0400] "GET /wp-content/plugins/seoo/wsoyanz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:27 -0400] "GET /wp-content/plugins/seoo/wsoyanz1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:46:27 -0400] "GET /cache-compat.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:28 -0400] "GET /ajax-actions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:28 -0400] "GET /wp-admin/ajax-actions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:28 -0400] "GET /wp-consar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:28 -0400] "GET /wp-admin/maint/maint/ajax-actions.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:28 -0400] "GET /alfanew.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:46:29 -0400] "GET /adminfuns.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:29 -0400] "GET /alfanew2.php7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:29 -0400] "GET /wp-content/plugins/wp-daft/miin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:29 -0400] "GET /wp-content/style-css.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:29 -0400] "GET /wp-includes/SimplePie/test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:30 -0400] "GET /wp-includes/sitemaps/providers/ultra.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:30 -0400] "GET /sx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:30 -0400] "GET /wp-includes/SimplePie/gzdecode.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:30 -0400] "GET /wp-admin/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:31 -0400] "GET /images/wp-login.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:31 -0400] "GET /wp-includes/IXR/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:31 -0400] "GET /ALFA_DATA/alfacgiapi/all.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:46:31 -0400] "GET /wp-admin/css/colors/content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:32 -0400] "GET /wp-includes/js/plupload/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:32 -0400] "GET /wp-uploads-config.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:32 -0400] "GET /wp-admin/includes/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:33 -0400] "GET /cgi-bin/wp-login.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.88.23.87 - - [05/May/2025:10:46:33 -0400] "GET /as.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:46:34 -0400] "GET /edit-comments.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.88.23.87 - - [05/May/2025:10:46:34 -0400] "GET /export.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:34 -0400] "GET /input.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:35 -0400] "GET /load-scripts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:35 -0400] "GET /load-styles.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:35 -0400] "GET /options-discussion.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:46:36 -0400] "GET /options-general.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:36 -0400] "GET /options-permalink.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:36 -0400] "GET /options-privacy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:36 -0400] "GET /options-reading.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:37 -0400] "GET /options-writing.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:37 -0400] "GET /post-new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:46:37 -0400] "GET /privacy.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:38 -0400] "GET /site-health.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:46:38 -0400] "GET /user-edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:39 -0400] "GET /user-new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:39 -0400] "GET /wp-by-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:39 -0400] "GET /bar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:40 -0400] "GET /samll.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:40 -0400] "GET /100.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:46:41 -0400] "GET /plugin-install.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:41 -0400] "GET /km.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:41 -0400] "GET /LA.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:41 -0400] "GET /wp-good.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.88.23.87 - - [05/May/2025:10:46:42 -0400] "GET /wp-ldd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.88.23.87 - - [05/May/2025:10:46:42 -0400] "GET /sgd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:46:43 -0400] "GET /wp-admin/images/Mhbgf.php/wp-content/themes/travelscape/json.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:43 -0400] "GET /wp-includes/ID3/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:43 -0400] "GET /wp-content/themes/hariko/lib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:46:44 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:46:44 -0400] "GET /wp-content/plugins/classic-editor/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:44 -0400] "GET /Njima.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:44 -0400] "GET /.tmb/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:45 -0400] "GET /wp-content/themes/pridmag/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:45 -0400] "GET /FroggBaba.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.88.23.87 - - [05/May/2025:10:46:45 -0400] "GET /wp-includes/pomo/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:45 -0400] "GET /wp-admin/maint/users.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:46 -0400] "GET /wp-content/plugins/tunnelforms/lib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:46 -0400] "GET /wp-content/plugins/tunnelforms/lib.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:46:46 -0400] "GET /wp-admin/user/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:47 -0400] "GET /defaults.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:47 -0400] "GET /wp-admin/images/Mhbgf.php/xx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:47 -0400] "GET /gali.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:48 -0400] "GET /wp-admin/wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:48 -0400] "GET /cache/i/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.88.23.87 - - [05/May/2025:10:46:48 -0400] "GET /dirs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:48 -0400] "GET /abouts.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:49 -0400] "GET /malls.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:49 -0400] "GET /liefs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:50 -0400] "GET /uc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:50 -0400] "GET /locks.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:51 -0400] "GET /wp-dsdd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:51 -0400] "GET /wordpress/logsxxyyzz.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:46:52 -0400] "GET /css/bun.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:52 -0400] "GET /js/edit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:53 -0400] "GET /wp-themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:53 -0400] "GET /wp-uploads.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:53 -0400] "GET /stindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.88.23.87 - - [05/May/2025:10:46:54 -0400] "GET /shop.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:54 -0400] "GET /exit.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.88.23.87 - - [05/May/2025:10:46:54 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:54 -0400] "GET /worm3.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:55 -0400] "GET /shellv3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:55 -0400] "GET /priv8.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.88.23.87 - - [05/May/2025:10:46:55 -0400] "GET /delete3.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:55 -0400] "GET /wp-content/plugins/wp-doftx/noimg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:56 -0400] "GET /wp-content/themes/bltm/wp-login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.88.23.87 - - [05/May/2025:10:46:56 -0400] "GET /server.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.88.23.87 - - [05/May/2025:10:46:56 -0400] "GET /mailer.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:56 -0400] "GET /phpzipincs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.88.23.87 - - [05/May/2025:10:46:57 -0400] "GET /www.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.88.23.87 - - [05/May/2025:10:46:57 -0400] "GET /css/wp-casper.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.88.23.87 - - [05/May/2025:10:46:57 -0400] "GET /cache.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:58 -0400] "GET /assets/dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:58 -0400] "GET /wp-content/plugins/wp-doft/noimg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:59 -0400] "GET /ioxi001.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:46:59 -0400] "GET /media-admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:47:00 -0400] "GET /Kenneth.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:47:00 -0400] "GET /Rosette.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:47:00 -0400] "GET /beence.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.88.23.87 - - [05/May/2025:10:47:01 -0400] "GET /update.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:12 -0400] "GET /.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:13 -0400] "GET /.well-known/pki-validation/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:13 -0400] "GET /.well-known/acme-challenge/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:13 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:13 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:14 -0400] "GET /wp-content/themes/tflow/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:14 -0400] "GET /wp-admin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:14 -0400] "GET /wordpress/wp-admin/includes HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:14 -0400] "GET /wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:15 -0400] "GET /ALFA_DATA/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:15 -0400] "GET /wp-content/upgrade/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:15 -0400] "GET /wp-admin/css/colors/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:16 -0400] "GET /wp-includes/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:16 -0400] "GET /wp-includes/ID3 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:16 -0400] "GET /wp-includes/Requests/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:16 -0400] "GET /wp-includes/blocks/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:16 -0400] "GET /wp-includes/certificates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:17 -0400] "GET /wp-includes/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:18 -0400] "GET /wp-admin/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:18 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:18 -0400] "GET /wp-admin/meta/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:18 -0400] "GET /wp-admin/network/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:19 -0400] "GET /wp-admin/user/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:19 -0400] "GET /wp-content/uploads/ao_ccss/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:19 -0400] "GET /wp-content/uploads/2021/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:20 -0400] "GET /wp-content/plugins/elementor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:20 -0400] "GET /wp-content/mu-plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:20 -0400] "GET /upload/image/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:21 -0400] "GET /wordpress/wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 156.146.56.131 - - [05/May/2025:10:47:21 -0400] "GET /wordpress/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:21 -0400] "GET /blog/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:21 -0400] "GET /sites/default/files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:22 -0400] "GET /admin/controller/extension/extension/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:22 -0400] "GET /admin/editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:22 -0400] "GET /admin/images/slider/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:22 -0400] "GET /admin/tmp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:23 -0400] "GET /admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:23 -0400] "GET /Admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:23 -0400] "GET /admin/uploads/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:23 -0400] "GET /administrator/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:23 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:24 -0400] "GET /assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:24 -0400] "GET /cgi-bin/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:24 -0400] "GET /components/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:24 -0400] "GET /home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:25 -0400] "GET /include/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.56.131 - - [05/May/2025:10:47:25 -0400] "GET /modules/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:25 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:25 -0400] "GET /mt/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:26 -0400] "GET /site/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:26 -0400] "GET /tmps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 156.146.56.131 - - [05/May/2025:10:47:26 -0400] "GET /wordpress/wp-admin/includes/wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:26 -0400] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:27 -0400] "GET /wp-admin/css/colors/light/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:27 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.56.131 - - [05/May/2025:10:47:27 -0400] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:27 -0400] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:27 -0400] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:28 -0400] "GET /wp-admin/js/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:28 -0400] "GET /wp-content/languages/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.56.131 - - [05/May/2025:10:47:28 -0400] "GET /wp-content/uploads/2022/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:28 -0400] "GET /wp-content/uploads/2023/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.56.131 - - [05/May/2025:10:47:29 -0400] "GET /wp-content/uploads/2024/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:29 -0400] "GET /wp-includes/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:29 -0400] "GET /wp-includes/css/dist/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:29 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:30 -0400] "GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:30 -0400] "GET /wp-includes/images/crystal/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.56.131 - - [05/May/2025:10:47:30 -0400] "GET /wp-includes/images/media/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.56.131 - - [05/May/2025:10:47:31 -0400] "GET /wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:31 -0400] "GET /wp-includes/images/wlw/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:31 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:31 -0400] "GET /wp-includes/js/plupload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:32 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:32 -0400] "GET /wp-includes/sitemaps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:33 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:33 -0400] "GET /cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:33 -0400] "GET /cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:33 -0400] "GET /cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:34 -0400] "GET /ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:34 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.56.131 - - [05/May/2025:10:47:34 -0400] "GET /wp-content/plugins/linkpreview/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:35 -0400] "GET /wp-content/plugins/aryabot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:35 -0400] "GET /wp-content/plugins/BrutalShell/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:35 -0400] "GET /wp-content/plugins/cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:35 -0400] "GET /wp-content/plugins/cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:36 -0400] "GET /wp-content/plugins/cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:36 -0400] "GET /wp-content/plugins/db/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:36 -0400] "GET /wp-content/plugins/home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:36 -0400] "GET /wp-content/plugins/limit/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.56.131 - - [05/May/2025:10:47:37 -0400] "GET /wp-content/plugins/owfsmac/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:37 -0400] "GET /wp-content/plugins/prenota/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:37 -0400] "GET /wp-content/plugins/random/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:37 -0400] "GET /wp-content/plugins/ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:38 -0400] "GET /wp-content/plugins/Uwogh-Segs/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.56.131 - - [05/May/2025:10:47:38 -0400] "GET /wp-content/plugins/wp-diambar/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:38 -0400] "GET /wp-content/plugins/wp-freeform/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 156.146.56.131 - - [05/May/2025:10:47:38 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:38 -0400] "GET /wp-content/plugins/wpeazvp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:39 -0400] "GET /wp-content/plugins/zaen/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:39 -0400] "GET /wp-content/uploads/revslider/templates/immersion-photography/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:39 -0400] "GET /patriotic/wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:39 -0400] "GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:40 -0400] "GET /wp-content/plugins/core-stab/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:40 -0400] "GET /wp-content/themes/alera/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:40 -0400] "GET /wp-content/themes/rishi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:40 -0400] "GET /wp-content/themes/sketch/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:40 -0400] "GET /wp-content/themes/thuoc-nam/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:41 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:41 -0400] "GET /wp-content/themes/wp-pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:41 -0400] "GET /wp-content/themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:41 -0400] "GET /wp-content/themes/zakra/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.56.131 - - [05/May/2025:10:47:41 -0400] "GET /wp-content/uploads/simple-file-list/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:42 -0400] "GET /admin/upload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:42 -0400] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:42 -0400] "GET /up/.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:43 -0400] "GET /wp-content/plugins/apikey/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:43 -0400] "GET /wp-content/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:43 -0400] "GET /images/ HTTP/1.1" 200 2558 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:43 -0400] "GET /images/images/w.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:44 -0400] "GET /images/images/wp-blog-header.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:44 -0400] "GET /images/images/wp-cron.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:44 -0400] "GET /css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:44 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:45 -0400] "GET /wp-includes/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:45 -0400] "GET /wp-includes/SimplePie/XML/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:45 -0400] "GET /wp-content/uploads/wpr-addons/forms/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.56.131 - - [05/May/2025:10:47:45 -0400] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.56.131 - - [05/May/2025:10:47:46 -0400] "GET /wordpress/wp-admin/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:46 -0400] "GET /wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:46 -0400] "GET /wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:46 -0400] "GET /wp-includes/SimplePie/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:47 -0400] "GET /wp-includes/Text/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.56.131 - - [05/May/2025:10:47:47 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.56.131 - - [05/May/2025:10:47:47 -0400] "GET /wp-includes/customize/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.56.131 - - [05/May/2025:10:47:47 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:48 -0400] "GET /wp-includes/pomo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:48 -0400] "GET /wp-includes/rest-api/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:48 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:48 -0400] "GET /wp-content/plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:48 -0400] "GET /wp-content/plugins/pwnd/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:49 -0400] "GET /about/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:49 -0400] "GET /plugins/jquery.filer/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:49 -0400] "GET /wp-content/plugins/dummyyummy/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:49 -0400] "GET /wp-content/themes/seotheme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:50 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:50 -0400] "GET /wp-content/plugins/revslider/includes/external/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:50 -0400] "GET /wp-content/plugins/Cache/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:50 -0400] "GET /wp-content/themes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:50 -0400] "GET /wp-includes/theme-compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:51 -0400] "GET /index/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.56.131 - - [05/May/2025:10:47:51 -0400] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.56.131 - - [05/May/2025:10:47:51 -0400] "GET /fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:51 -0400] "GET /js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:52 -0400] "GET /routes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:52 -0400] "GET /uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:52 -0400] "GET /templates/beez3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.56.131 - - [05/May/2025:10:47:52 -0400] "GET /wp-content/themes/digital-download/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:53 -0400] "GET /wp-content/plugins/wp-theme-editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:53 -0400] "GET /templates/atomic/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:53 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:53 -0400] "GET /wp-includes/assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 156.146.56.131 - - [05/May/2025:10:47:54 -0400] "GET /wp-includes/js/jcrop/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:54 -0400] "GET /wp-content/plugins/google-seo-rank/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:54 -0400] "GET /wp-content/plugins/erin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:54 -0400] "GET /wp-content/maintenance/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:55 -0400] "GET /wp-content/x/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:55 -0400] "GET /wp-content/plugins/seooyanz/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:55 -0400] "GET /wp-content/themes/sky-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:56 -0400] "GET /wp-content/plugins/cp-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.56.131 - - [05/May/2025:10:47:56 -0400] "GET /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 156.146.56.131 - - [05/May/2025:10:47:56 -0400] "GET /wp-content/uploads/typehub/custom/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.56.131 - - [05/May/2025:10:47:57 -0400] "GET /wp-content/plugins/rencontre/inc/photo_import/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.56.131 - - [05/May/2025:10:47:57 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:57 -0400] "GET /wp-content/plugins/pwnd-1/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.56.131 - - [05/May/2025:10:47:57 -0400] "GET /.tmb/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:58 -0400] "GET /wp-content/plugins/fix/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.56.131 - - [05/May/2025:10:47:58 -0400] "GET /includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.56.131 - - [05/May/2025:10:47:58 -0400] "GET /themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 13.82.181.88 - - [05/May/2025:10:56:39 -0400] "GET /wp-content/ccx/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:39 -0400] "GET /wp-content/themes/tflow/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:40 -0400] "GET /wp-content/plugins/pwnd-1/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:40 -0400] "GET /wp-content/plugins/pwnd/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:40 -0400] "GET /wordpress/wp-includes/IXR/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:40 -0400] "GET /assets/fonts/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:40 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:40 -0400] "GET /wp-content/plugins/css-ready/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:40 -0400] "GET /wp-content/plugins/linkpreview/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:41 -0400] "GET /wp-content/uploads/2023/11/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:41 -0400] "GET /wp-includes/js/tinymce/skins/wordpress/images/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:41 -0400] "GET /wp-includes/Requests/Text/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:42 -0400] "GET /wp-content/themes/wp-classic/inc/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:42 -0400] "GET /admin/upload/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:43 -0400] "GET /wp-includes.bak/html-api/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:43 -0400] "GET /wp-admin/maint/maint/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:44 -0400] "GET /wp-content/plugins/Cache/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:45 -0400] "GET /wp-admin/css/colors/coffee/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:46 -0400] "GET /wp-admin/js//wp-admin/js/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:47 -0400] "GET /wp/wp-includes/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:48 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/img/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:48 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:48 -0400] "GET /wp-content/gallery/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:49 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:49 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:49 -0400] "GET /filemanager/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:49 -0400] "GET /images/ HTTP/1.1" 200 2563 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:50 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/fonts/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:50 -0400] "GET /wp-content/plugins/envato-market/inc/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:50 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:50 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:50 -0400] "GET /wp-content/themes/travel/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:50 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:50 -0400] "GET /img/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:51 -0400] "GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:51 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:51 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:51 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:51 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:52 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:53 -0400] "GET /wp-content/plugins/widget-logic/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:53 -0400] "GET /wp-includes/js/tinymce/langs/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:53 -0400] "GET /wp-includes//wp-includes/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:53 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:53 -0400] "GET /wp-content/plugins/masterx/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:53 -0400] "GET /wp-content/plugins/custom/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:53 -0400] "GET /wp-includes/Requests/Exception/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:54 -0400] "GET /wp-content/plugins/yyobang/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:54 -0400] "GET /libraries/vendor/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:54 -0400] "GET /include/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:54 -0400] "GET /wp-content/blogs.dir/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:54 -0400] "GET /libraries/legacy/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:54 -0400] "GET /wp-content/uploads/2018/03/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:55 -0400] "GET /wp-content/plugins/press/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:55 -0400] "GET /libraries/phpmailer/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:55 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:55 -0400] "GET /wp-content/plugins/apikey/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:56 -0400] "GET /wp-content/banners/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:56 -0400] "GET /.wp-cli/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:56 -0400] "GET /wp-includes/sodium_compat/src/Core/Curve25519/Ge/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:56 -0400] "GET /wp-content/plugins/background-image-cropper/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:56 -0400] "GET /wp-admin/ccx/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:56 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:57 -0400] "GET /assets/images/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:57 -0400] "GET /wp-content/plugins/instabuilder2/cache/plugins/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:57 -0400] "GET /.well-known//.well-known/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:57 -0400] "GET /wp-includes/blocks/table/int/tmpl/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:57 -0400] "GET /wp-includes/js/jcrop/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:58 -0400] "GET /wp-includes/js/crop/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:58 -0400] "GET /wp/wp-admin/includes/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:56:58 -0400] "GET /wp-includes/sitemaps/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:00 -0400] "GET /wp-includes/js/dist/vendor/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:00 -0400] "GET /wp-content/themes/twentyseventeen/page/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:00 -0400] "GET /wp-includes/pomo/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:01 -0400] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:01 -0400] "GET /wp-content/uploads/2014/03/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:01 -0400] "GET /wp-content/plugins/fix/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:01 -0400] "GET /.tmb/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:03 -0400] "GET /docs/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:03 -0400] "GET /wp-content/plugins/dzs-zoomsounds/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:03 -0400] "GET /wp-content/themes/ccx/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:04 -0400] "GET /wp-content/themes/travelscape/ HTTP/1.1" 200 0 "-" "-" 13.82.181.88 - - [05/May/2025:10:57:04 -0400] "GET /wordpress/wp-includes/ HTTP/1.1" 200 0 "-" "-" 54.172.23.145 - - [05/May/2025:11:09:09 -0400] "GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 43.130.91.95 - - [05/May/2025:11:20:22 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 51.222.253.6 - - [05/May/2025:12:23:04 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 51.222.253.8 - - [05/May/2025:12:23:05 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 35.245.99.104 - - [05/May/2025:13:04:06 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 35.245.99.104 - - [05/May/2025:13:04:09 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.145.227.125 - - [05/May/2025:14:08:05 -0400] "GET /assets/plugins/jQuery-File-Upload/server/php/index.php?file=tf2rghf.jpg HTTP/1.1" 200 0 "-" "ALittle Client" 54.172.23.145 - - [05/May/2025:14:13:47 -0400] "GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 34.138.31.224 - - [05/May/2025:18:21:11 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 34.138.31.224 - - [05/May/2025:18:21:15 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 216.244.66.234 - - [05/May/2025:18:22:28 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.234 - - [05/May/2025:18:26:29 -0400] "GET /?C=N;O=D HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 51.222.253.14 - - [05/May/2025:20:41:35 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 2.58.56.50 - - [05/May/2025:22:32:01 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "-" 199.244.88.221 - - [05/May/2025:23:13:57 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 43.153.123.3 - - [06/May/2025:00:58:56 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 198.235.24.32 - - [06/May/2025:03:04:54 -0400] "GET / HTTP/1.1" 200 0 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 195.20.18.145 - - [06/May/2025:06:39:37 -0400] "GET /sites/all/libraries/elfinder/elfinder.html HTTP/1.1" 200 0 "-" "ALittle Client" 43.130.60.195 - - [06/May/2025:08:40:03 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 217.160.202.182 - - [06/May/2025:09:06:50 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36 Edg/91.0.864.54" 107.151.222.60 - - [06/May/2025:09:59:40 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 35.196.102.145 - - [06/May/2025:10:31:05 -0400] "GET /media/system/js/core.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 35.196.102.145 - - [06/May/2025:10:31:12 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 54.36.149.71 - - [06/May/2025:11:16:31 -0400] "GET /robots.txt HTTP/1.1" 200 129 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 51.222.253.12 - - [06/May/2025:11:16:32 -0400] "GET /shop.php?sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 194.33.45.89 - - [06/May/2025:14:29:56 -0400] "GET /file.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:29:57 -0400] "GET /index/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:29:58 -0400] "GET /.ll/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:29:58 -0400] "GET /.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.89 - - [06/May/2025:14:29:58 -0400] "GET /wp-content/plugins/async-upload.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:29:59 -0400] "GET /new.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:29:59 -0400] "GET /pages.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.33.45.89 - - [06/May/2025:14:30:00 -0400] "GET /wp-editor.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:00 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:00 -0400] "GET /ge.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:30:01 -0400] "GET /chosen.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:01 -0400] "GET /templatesdex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:01 -0400] "GET /click.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:01 -0400] "GET /.lu/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.33.45.89 - - [06/May/2025:14:30:01 -0400] "GET /mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:01 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:01 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:02 -0400] "GET /wp-mail.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.33.45.89 - - [06/May/2025:14:30:02 -0400] "GET /randkeyword.PhP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:02 -0400] "GET /wp-content/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.33.45.89 - - [06/May/2025:14:30:05 -0400] "GET /lock.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:07 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:08 -0400] "GET /ws.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.33.45.89 - - [06/May/2025:14:30:11 -0400] "GET /x.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:14 -0400] "GET /login.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.33.45.89 - - [06/May/2025:14:30:16 -0400] "GET /eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:16 -0400] "GET /wp-admin/images/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.33.45.89 - - [06/May/2025:14:30:19 -0400] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:20 -0400] "GET /test.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.33.45.89 - - [06/May/2025:14:30:21 -0400] "GET /wp-admin/images/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:21 -0400] "GET /cong.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.89 - - [06/May/2025:14:30:22 -0400] "GET /baxa1.phP8 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:23 -0400] "GET /wp-admin/css/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:23 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:24 -0400] "GET /autoload_classmap.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:24 -0400] "GET /themes.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:24 -0400] "GET /wp-includes/ID3/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.33.45.89 - - [06/May/2025:14:30:24 -0400] "GET /wp-includes/Text/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:25 -0400] "GET /wp-admin/network/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:25 -0400] "GET /rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:26 -0400] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:26 -0400] "GET /wp-admin/js/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:30:26 -0400] "GET /.well-known/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:26 -0400] "GET /chosen.phppload HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:27 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:30:27 -0400] "GET /sxx.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:28 -0400] "GET /wp-admin/maint/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:28 -0400] "GET /baxa1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.33.45.89 - - [06/May/2025:14:30:29 -0400] "GET /classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:29 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.33.45.89 - - [06/May/2025:14:30:29 -0400] "GET /about/function.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.33.45.89 - - [06/May/2025:14:30:34 -0400] "GET /user/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:36 -0400] "GET /wp-content/themes/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:36 -0400] "GET /wp-includes/css/dist/niil.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:38 -0400] "GET /moon.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:38 -0400] "GET /wp-admin/css/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:39 -0400] "GET /wp-admin/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.33.45.89 - - [06/May/2025:14:30:39 -0400] "GET /1.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:39 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:40 -0400] "GET /pgs.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:40 -0400] "GET /shell20211028.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:41 -0400] "GET /mjq.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.33.45.89 - - [06/May/2025:14:30:41 -0400] "GET /content.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:41 -0400] "GET /readme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.33.45.89 - - [06/May/2025:14:30:41 -0400] "GET /litespeed.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.89 - - [06/May/2025:14:30:42 -0400] "GET /bypass.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:42 -0400] "GET /.qiodeme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:42 -0400] "GET /ad.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:43 -0400] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:43 -0400] "GET /wp-content/upgrade/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:45 -0400] "GET /df.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:47 -0400] "GET /jindex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:47 -0400] "GET /wp-configs.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:47 -0400] "GET /Files/Mo0n.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:47 -0400] "GET /wp-content/mah.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.33.45.89 - - [06/May/2025:14:30:48 -0400] "GET /bv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:48 -0400] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:49 -0400] "GET /403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:49 -0400] "GET /bk.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.89 - - [06/May/2025:14:30:50 -0400] "GET /wp-includes/fonts/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:30:50 -0400] "GET /wp-content/languages/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.89 - - [06/May/2025:14:30:51 -0400] "GET /wp-atom.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:52 -0400] "GET /hj.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.89 - - [06/May/2025:14:30:52 -0400] "GET /sym.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:30:53 -0400] "GET /lp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.33.45.89 - - [06/May/2025:14:30:53 -0400] "GET /Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.33.45.89 - - [06/May/2025:14:30:54 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:54 -0400] "GET /yt.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.33.45.89 - - [06/May/2025:14:30:54 -0400] "GET /wp-conflg.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:55 -0400] "GET /x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:55 -0400] "GET /hehehehe.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:55 -0400] "GET /.github/default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:55 -0400] "GET /default.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.33.45.89 - - [06/May/2025:14:30:56 -0400] "GET /bn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.33.45.89 - - [06/May/2025:14:30:56 -0400] "GET /wordpress/update/wpupex.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:30:57 -0400] "GET /plugin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:30:59 -0400] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:31:00 -0400] "GET /ini.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:31:01 -0400] "GET /wp-includes/rest-api/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:31:01 -0400] "GET /shell.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.89 - - [06/May/2025:14:31:01 -0400] "GET /aa.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.33.45.89 - - [06/May/2025:14:31:03 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:31:06 -0400] "GET /wp-admin/includes/classwithtostring.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:31:06 -0400] "GET /wp-includes/ID3/about.php/wp-content/x/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.89 - - [06/May/2025:14:31:06 -0400] "GET /wpn.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:31:07 -0400] "GET /wp-admin/css/colors/eew.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:31:07 -0400] "GET /wp-admin/js/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.33.45.89 - - [06/May/2025:14:31:08 -0400] "GET /wp-includes/rk2.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.33.45.89 - - [06/May/2025:14:31:09 -0400] "GET /wp.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:31:12 -0400] "GET /wp-content/themes/xc.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.33.45.89 - - [06/May/2025:14:31:13 -0400] "GET /baxa1.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 174.138.55.71 - - [06/May/2025:14:31:16 -0400] "GET /baxa1.phP7 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 174.138.55.71 - - [06/May/2025:14:31:19 -0400] "GET /av.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:31:44 -0400] "GET /network.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:31:52 -0400] "GET /wso.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:31:56 -0400] "GET /wp-content/upgrade/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.33.45.65 - - [06/May/2025:14:32:02 -0400] "GET /wp-2019.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:08 -0400] "GET /wp-includes/widgets/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:12 -0400] "GET /wp-content/Files/index.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:15 -0400] "GET /vv.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:17 -0400] "GET /wp-includes/style-engine/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.33.45.65 - - [06/May/2025:14:32:21 -0400] "GET /wp-user.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:24 -0400] "GET /wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.65 - - [06/May/2025:14:32:25 -0400] "GET /.well-known/acme-challenge/cloud.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:27 -0400] "GET /assets/css/403.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:29 -0400] "GET /error.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.33.45.65 - - [06/May/2025:14:32:35 -0400] "GET /ff.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:38 -0400] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:39 -0400] "GET /wp-content/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.33.45.65 - - [06/May/2025:14:32:41 -0400] "GET /credits.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.33.45.65 - - [06/May/2025:14:32:44 -0400] "GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.65 - - [06/May/2025:14:32:47 -0400] "GET /wp-includes/js/about.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:49 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:32:52 -0400] "GET /wp-includes/.qiodetme.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.33.45.65 - - [06/May/2025:14:32:57 -0400] "GET /wp-admin/maint/flower.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:33:00 -0400] "GET /wp-includes/admin.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.33.45.65 - - [06/May/2025:14:33:01 -0400] "GET /wp-tinymce.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:12 -0400] "GET /.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:13 -0400] "GET /.well-known/pki-validation/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:13 -0400] "GET /.well-known/acme-challenge/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:13 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:16 -0400] "GET /wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:22 -0400] "GET /wp-content/themes/tflow/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:33:23 -0400] "GET /wp-admin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:28 -0400] "GET /wordpress/wp-admin/includes HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:33:32 -0400] "GET /wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 84.17.35.102 - - [06/May/2025:14:33:34 -0400] "GET /ALFA_DATA/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:33:34 -0400] "GET /wp-content/upgrade/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:35 -0400] "GET /wp-admin/css/colors/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:36 -0400] "GET /wp-includes/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 84.17.35.102 - - [06/May/2025:14:33:37 -0400] "GET /wp-includes/ID3 HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:38 -0400] "GET /wp-includes/Requests/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:33:38 -0400] "GET /wp-includes/blocks/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:33:39 -0400] "GET /wp-includes/certificates/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:33:39 -0400] "GET /wp-includes/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 84.17.35.102 - - [06/May/2025:14:33:40 -0400] "GET /wp-admin/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:33:41 -0400] "GET /wp-admin/maint/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:41 -0400] "GET /wp-admin/meta/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:41 -0400] "GET /wp-admin/network/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:42 -0400] "GET /wp-admin/user/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:43 -0400] "GET /wp-content/uploads/ao_ccss/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:43 -0400] "GET /wp-content/uploads/2021/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:43 -0400] "GET /wp-content/plugins/elementor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:33:45 -0400] "GET /wp-content/mu-plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 84.17.35.102 - - [06/May/2025:14:33:45 -0400] "GET /upload/image/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:45 -0400] "GET /wordpress/wp-content/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:46 -0400] "GET /wordpress/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:33:46 -0400] "GET /blog/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 84.17.35.102 - - [06/May/2025:14:33:46 -0400] "GET /sites/default/files/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 84.17.35.102 - - [06/May/2025:14:33:47 -0400] "GET /admin/controller/extension/extension/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 84.17.35.102 - - [06/May/2025:14:33:47 -0400] "GET /admin/editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:47 -0400] "GET /admin/images/slider/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:33:48 -0400] "GET /admin/tmp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:07 -0400] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:09 -0400] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:12 -0400] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 84.17.35.102 - - [06/May/2025:14:34:13 -0400] "GET /wp-admin/js/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:15 -0400] "GET /wp-content/languages/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 84.17.35.102 - - [06/May/2025:14:34:16 -0400] "GET /wp-content/uploads/2022/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:17 -0400] "GET /wp-content/uploads/2023/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:18 -0400] "GET /wp-content/uploads/2024/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:20 -0400] "GET /wp-includes/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:34:21 -0400] "GET /wp-includes/css/dist/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:34:21 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:22 -0400] "GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:22 -0400] "GET /wp-includes/images/crystal/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:22 -0400] "GET /wp-includes/images/media/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:22 -0400] "GET /wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:22 -0400] "GET /wp-includes/images/wlw/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:23 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:23 -0400] "GET /wp-includes/js/plupload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:24 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 84.17.35.102 - - [06/May/2025:14:34:24 -0400] "GET /wp-includes/sitemaps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:34:25 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:25 -0400] "GET /cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:25 -0400] "GET /cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:28 -0400] "GET /cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:29 -0400] "GET /ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 84.17.35.102 - - [06/May/2025:14:34:30 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 84.17.35.102 - - [06/May/2025:14:34:32 -0400] "GET /wp-content/plugins/linkpreview/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:33 -0400] "GET /wp-content/plugins/aryabot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:34 -0400] "GET /wp-content/plugins/BrutalShell/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 84.17.35.102 - - [06/May/2025:14:34:34 -0400] "GET /wp-content/plugins/cache-wordpress/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:34:35 -0400] "GET /wp-content/plugins/cakil/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:35 -0400] "GET /wp-content/plugins/cekidot/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:36 -0400] "GET /wp-content/plugins/db/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:37 -0400] "GET /wp-content/plugins/home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:39 -0400] "GET /wp-content/plugins/limit/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:41 -0400] "GET /wp-content/plugins/owfsmac/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:42 -0400] "GET /wp-content/plugins/prenota/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:43 -0400] "GET /wp-content/plugins/random/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:45 -0400] "GET /wp-content/plugins/ubh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:48 -0400] "GET /wp-content/plugins/Uwogh-Segs/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:50 -0400] "GET /wp-content/plugins/wp-diambar/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:51 -0400] "GET /wp-content/plugins/wp-freeform/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:51 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:51 -0400] "GET /wp-content/plugins/wpeazvp/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:51 -0400] "GET /wp-content/plugins/zaen/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:51 -0400] "GET /wp-content/uploads/revslider/templates/immersion-photography/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:51 -0400] "GET /patriotic/wp-includes/images/smilies/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:52 -0400] "GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:34:52 -0400] "GET /wp-content/plugins/core-stab/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:52 -0400] "GET /wp-content/themes/alera/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 84.17.35.102 - - [06/May/2025:14:34:53 -0400] "GET /wp-content/themes/rishi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 84.17.35.102 - - [06/May/2025:14:34:53 -0400] "GET /wp-content/themes/sketch/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:34:53 -0400] "GET /wp-content/themes/thuoc-nam/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 84.17.35.102 - - [06/May/2025:14:34:53 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:54 -0400] "GET /wp-content/themes/wp-pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:54 -0400] "GET /wp-content/themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:54 -0400] "GET /wp-content/themes/zakra/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 84.17.35.102 - - [06/May/2025:14:34:55 -0400] "GET /wp-content/uploads/simple-file-list/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:55 -0400] "GET /admin/upload/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:55 -0400] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:56 -0400] "GET /up/.well-known/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:56 -0400] "GET /wp-content/plugins/apikey/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:34:56 -0400] "GET /wp-content/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 84.17.35.102 - - [06/May/2025:14:34:56 -0400] "GET /images/ HTTP/1.1" 200 2558 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:57 -0400] "GET /images/images/w.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:34:57 -0400] "GET /images/images/wp-blog-header.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:34:57 -0400] "GET /images/images/wp-cron.php HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 84.17.35.102 - - [06/May/2025:14:34:58 -0400] "GET /css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 84.17.35.102 - - [06/May/2025:14:34:58 -0400] "GET /wp-admin/css/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 84.17.35.102 - - [06/May/2025:14:34:59 -0400] "GET /wp-includes/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:59 -0400] "GET /wp-includes/SimplePie/XML/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:00 -0400] "GET /wp-content/uploads/wpr-addons/forms/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:01 -0400] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:01 -0400] "GET /wordpress/wp-admin/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:35:02 -0400] "GET /wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:02 -0400] "GET /wp-includes/IXR/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:02 -0400] "GET /wp-includes/SimplePie/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 84.17.35.102 - - [06/May/2025:14:35:05 -0400] "GET /wp-includes/Text/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:08 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:35:09 -0400] "GET /wp-includes/customize/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:35:10 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:10 -0400] "GET /wp-includes/pomo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 84.17.35.102 - - [06/May/2025:14:35:10 -0400] "GET /wp-includes/rest-api/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:11 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 84.17.35.102 - - [06/May/2025:14:35:11 -0400] "GET /wp-content/plugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:35:12 -0400] "GET /wp-content/plugins/pwnd/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:35:12 -0400] "GET /about/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:13 -0400] "GET /plugins/jquery.filer/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:13 -0400] "GET /wp-content/plugins/dummyyummy/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:35:13 -0400] "GET /wp-content/themes/seotheme/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 84.17.35.102 - - [06/May/2025:14:35:15 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 84.17.35.102 - - [06/May/2025:14:35:16 -0400] "GET /wp-content/plugins/revslider/includes/external/page/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 84.17.35.102 - - [06/May/2025:14:35:17 -0400] "GET /wp-content/plugins/Cache/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:19 -0400] "GET /wp-content/themes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 84.17.35.102 - - [06/May/2025:14:35:21 -0400] "GET /wp-includes/theme-compat/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:35:21 -0400] "GET /index/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 84.17.35.102 - - [06/May/2025:14:35:22 -0400] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:22 -0400] "GET /fonts/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:22 -0400] "GET /js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:22 -0400] "GET /routes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:22 -0400] "GET /uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:23 -0400] "GET /templates/beez3/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 84.17.35.102 - - [06/May/2025:14:35:23 -0400] "GET /wp-content/themes/digital-download/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:23 -0400] "GET /wp-content/plugins/wp-theme-editor/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:23 -0400] "GET /templates/atomic/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:35:23 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:24 -0400] "GET /wp-includes/assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:35:24 -0400] "GET /wp-includes/js/jcrop/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:24 -0400] "GET /wp-content/plugins/google-seo-rank/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 84.17.35.102 - - [06/May/2025:14:35:25 -0400] "GET /wp-content/plugins/erin/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:26 -0400] "GET /wp-content/maintenance/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 84.17.35.102 - - [06/May/2025:14:35:26 -0400] "GET /wp-content/x/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:26 -0400] "GET /wp-content/plugins/seooyanz/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 84.17.35.102 - - [06/May/2025:14:35:28 -0400] "GET /wp-content/themes/sky-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 84.17.35.102 - - [06/May/2025:14:35:28 -0400] "GET /wp-content/plugins/cp-pro/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:35:28 -0400] "GET /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 84.17.35.102 - - [06/May/2025:14:35:29 -0400] "GET /wp-content/uploads/typehub/custom/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:48 -0400] "GET /admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:49 -0400] "GET /Admin/uploads/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 84.17.35.102 - - [06/May/2025:14:33:49 -0400] "GET /admin/uploads/images/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:49 -0400] "GET /administrator/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:50 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:33:50 -0400] "GET /assets/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:50 -0400] "GET /cgi-bin/ HTTP/1.1" 404 1251 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:51 -0400] "GET /components/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:51 -0400] "GET /home/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:33:52 -0400] "GET /include/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 84.17.35.102 - - [06/May/2025:14:33:53 -0400] "GET /modules/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:33:53 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 84.17.35.102 - - [06/May/2025:14:33:54 -0400] "GET /mt/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 84.17.35.102 - - [06/May/2025:14:33:54 -0400] "GET /site/wp-includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:33:58 -0400] "GET /tmps/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 84.17.35.102 - - [06/May/2025:14:33:59 -0400] "GET /wordpress/wp-admin/includes/wp-admin/js/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:00 -0400] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:01 -0400] "GET /wp-admin/css/colors/light/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:34:03 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:29 -0400] "GET /wp-content/plugins/rencontre/inc/photo_import/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:29 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 84.17.35.102 - - [06/May/2025:14:35:30 -0400] "GET /wp-content/plugins/pwnd-1/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 84.17.35.102 - - [06/May/2025:14:35:30 -0400] "GET /.tmb/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 84.17.35.102 - - [06/May/2025:14:35:30 -0400] "GET /wp-content/plugins/fix/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 84.17.35.102 - - [06/May/2025:14:35:31 -0400] "GET /includes/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 84.17.35.102 - - [06/May/2025:14:35:31 -0400] "GET /themes/pridmag/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 154.3.62.7 - - [06/May/2025:15:01:12 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; MixrankBot; crawler@mixrank.com)" 103.65.237.89 - - [06/May/2025:15:04:30 -0400] "GET /404.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:34 -0400] "GET /users.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:44 -0400] "GET /classwithtostring.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:47 -0400] "GET /wp-head.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:49 -0400] "GET /admin.php HTTP/1.1" 404 1251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:52 -0400] "GET /about.php HTTP/1.1" 404 1251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:53 -0400] "GET /dropdown.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:56 -0400] "GET /wp-header.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:57 -0400] "GET /alfanew.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:04:58 -0400] "GET /radio.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:05:09 -0400] "GET /simple.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:05:14 -0400] "GET /cong.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:05:19 -0400] "GET /options.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:05:24 -0400] "GET /alfa-rex.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:05:28 -0400] "GET /wp-content/index.php?x=ooo HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:05:31 -0400] "GET /wp-admin/options.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.237.89 - - [06/May/2025:15:05:36 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 200 0 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.172.70.188 - - [06/May/2025:15:34:19 -0400] "GET /sftp-config.json HTTP/1.1" 403 1242 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 167.172.70.188 - - [06/May/2025:15:34:20 -0400] "GET /.vscode/sftp.json HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 43.129.38.128 - - [06/May/2025:16:37:33 -0400] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 51.222.253.12 - - [06/May/2025:16:54:31 -0400] "GET /sitemap.xml HTTP/1.1" 200 0 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 52.184.192.24 - - [06/May/2025:17:54:14 -0400] "GET /wp/wp-includes/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:15 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/img/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:15 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:15 -0400] "GET /wp-content/gallery/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:15 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:15 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:15 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/fonts/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:16 -0400] "GET /wp-content/plugins/envato-market/inc/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:16 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:16 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:16 -0400] "GET /wp-content/themes/travel/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:16 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:16 -0400] "GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:17 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:17 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:17 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:17 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:18 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:18 -0400] "GET /wp-content/plugins/widget-logic/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:18 -0400] "GET /wp-includes/js/tinymce/langs/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:18 -0400] "GET /wp-includes/wp-includes/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:18 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:18 -0400] "GET /wp-content/plugins/masterx/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:19 -0400] "GET /wp-content/plugins/custom/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:19 -0400] "GET /wp-includes/Requests/Exception/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:19 -0400] "GET /wp-content/plugins/yyobang/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:20 -0400] "GET /libraries/vendor/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:20 -0400] "GET /include/ HTTP/1.1" 200 0 "-" "-" 52.184.192.24 - - [06/May/2025:17:54:20 -0400] "GET /wp-content/blogs.dir/ HTTP/1.1" 200 0 "-" "-"