OwlCyberSecurity - MANAGER

Edit File: hsec.com.pk.arsn.media

149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /index/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /.ll/.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /wp-content/plugins/async-upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /pages.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /wp-editor.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /ge.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /templatesdex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /click.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /.lu/.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /simple.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /wp-mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /randkeyword.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:03 -0400] "GET /wp-content/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /lock.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /ws.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-admin/images/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /test.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-admin/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /baxa1.phP8 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-admin/css/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-includes/ID3/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-includes/Text/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-admin/network/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /rex/l/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:04 -0400] "GET /wp-admin/js/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /.well-known/.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /chosen.phppload HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /sxx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-admin/maint/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /baxa1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /about/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /user/default.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-includes/css/dist/niil.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-admin/css/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-admin/js/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /pgs.phP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /mjq.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /readme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /litespeed.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /bypass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /.qiodeme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /ad.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:05 -0400] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-content/upgrade/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /df.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /jindex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-configs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /Files/Mo0n.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-content/mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /bv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /bk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-includes/fonts/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-content/languages/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-atom.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /hj.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /sym.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /lp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /Files/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /yt.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /x/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /hehehehe.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /.github/default.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /default.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /bn.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:06 -0400] "GET /wordpress/update/wpupex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /plugin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /ini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-includes/rest-api/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /aa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-admin/includes/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-includes/ID3/about.php/wp-content/x/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wpn.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-admin/css/colors/eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-admin/js/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-includes/rk2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-content/themes/xc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /baxa1.phP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /av.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /network.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-content/upgrade/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-includes/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-content/Files/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /vv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-includes/style-engine/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-user.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:07 -0400] "GET /wp-signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /.well-known/acme-challenge/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /assets/css/403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /error.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /ff.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-content/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /credits.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-includes/js/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-includes/.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-admin/maint/flower.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-includes/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-tinymce.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /wp-links.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /css/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /retu.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /aw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:08 -0400] "GET /lv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-includes/block-patterns/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /dr.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /randkeyword.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-admin/Files/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /ay.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wordpress/wp-admin/wp-edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-content/plugins/ioptimization/db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-content/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-admin/network/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-admin/defaults.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /mini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /yy.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /.well-known/pki-validation/eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /wp-includes/IXR/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:09 -0400] "GET /log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /tr.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /wp-content/themes/pridmag/db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /wp-includes/css/dist/test.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /byp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /aq.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /yu.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /gt.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /duck.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /op.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /l/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /update/wpupex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /m.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /2index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /wp-content/themes/sky-pro/js.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /ayk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /er.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /wp-includes/PHPMailer/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:10 -0400] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /ssa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /.well-known/content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /hardenX.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /.qiofetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-content/x/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-admin/maint/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /cc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /images/eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /new2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /class.api.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-content/cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /ok.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-content/mu-plugins/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /backup/sid.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /ki.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-includes/assets/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /.well-known/acme-challenge/upfile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /about/eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-admin/images/wp-post.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-content/plugins/cp-pro/js.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-includes/css/dist/components/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /wp-includes/customize/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:11 -0400] "GET /tt.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /uu.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wp-admin/x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /.well-known/pki-validation/xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /dir.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wp-admin/options.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /.well-known/acme-challenge/xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /xx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /css/xa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /sk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wordpress/wp-edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /item.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wordpress/wp-includes/wp-post.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /.well-known/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /bgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /an.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wp-includes/pomo/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /wp-content/plugins/core/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /test.php/wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /ova.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:12 -0400] "GET /plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-content/themes/eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /worksec.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /options.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-blog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-info.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /la.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /defaults.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-includes/fonts/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-includes/rest-api/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /images.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-content/plugins/wp-help/mini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /indeks.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-content/plugins/seoo/xynz1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-content/tmpls.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-content/themes/travel/issue.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-admin/js/widgets/eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/udd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-includes/Requests/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-includes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /retu11.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /back.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-content/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:13 -0400] "GET /images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-content/shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /system_log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /goods.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin/css/colors/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /rt.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin/maint/cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /.well-known/acme-challenge/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /admin/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-content/themes/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /.well-known/pki-validation/.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /makeasmtp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /hjk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /ac.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /w.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /inc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-includes/js/plupload/jquery.Jcrop.min.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-content/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin/css/about.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-content/plugins/seox/randkeyword.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-content/plugins/pwnd/1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /index/eew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /aj.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /wp-admin/includes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:14 -0400] "GET /hui.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /oo.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /data.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-includes/css/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-admin/maint/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /randkeyword.PhP8 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /ss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /xml.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-admin/images/lufix.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /customize.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /a.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-content/item.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /ui.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /b.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-includes/css/dist/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /images/class-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /as/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /kl.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-admin/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wsoyanzfv3.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-admin/Files/Mo0n.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /index/gu.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /lk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:15 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /update/wpup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /ioxi002.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-content/themes/aahana/json.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-includes/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-content/themes/seotheme/db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-admin/maint/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-trackback.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /cgi-bin/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-includes/wp-atom.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /.well-known/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /fm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-cron.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /sidwsi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wpupp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /upmdxpcz.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-admin/includes/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /blog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-admin/css/colors/coffee/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /yanz.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-includes/Requests/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /cgi-bin/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-includes/makeasmtp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:16 -0400] "GET /wp-includes/block-supports/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-includes/css/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /xpfkcrpp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-content/uploads/2023/a22.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /alfa-rex.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-includes/images/smilies/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wordpress/update/wpup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-admin/user/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /l.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /jp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /.well-known/acme-challenge/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-admin/maint/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-admin/css/colors/coffee/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-set.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /link.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /.well-known/pki-validation/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /.well-known/acme-challenge/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /worm0.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /admin/upload/css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /web.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /bak.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-content/plugins/azra-tn/wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /img/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /license.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-signup.php?Fox=sQFLZ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-content/themes/alera/alpha.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /13.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-content/plugins/work-list/lang.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /upfile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /uzkeerfe.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /contact.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-content/content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:17 -0400] "GET /wp-includes/blocks/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /ynz.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /ymhrwpmq.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /contents.php/lv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /yjsmnati.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /cgi-bin/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-links-opml.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /index.php?x=ooo HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-content/banners/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /post.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-admin/network/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-admin/images/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /hehe.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-content/plugins/erin/pgs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-content/plugins/linkpreview/db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-includes/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-content/plugins/simple/simple.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /lufix.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /about.php?525 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-admin/images/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-content/plugins/seoplugins/db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /tinyfilemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-admin/images/xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /cgi-bin/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:18 -0400] "GET /wp-admin/.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /files/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /ms.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /insert_activity_db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /.well-known/acme-challenge/makeasmtp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /update/gely.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /text.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /wp-includes/customize/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /saka.phP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /.well-known/acme-challenge/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /1index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /wp-admin/user/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /crack.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /.well-known/acme-challenge/mariju.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /bb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /wp-includes/js/upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /wp-admin/admin-ajax.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /components/com_joomdle/assets/upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /cmd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /upload_shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /var/www/html/shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:19 -0400] "GET /uploads/shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /files/shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /webdb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /xp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /bs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /update-core.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /wp-includes/dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /wp-includes/blocks/site-title/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /.well-known/acme-challenge/content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /.well-known/pki-validation/2index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /assets/images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /alfa-rex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:20 -0400] "GET /adminer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /wp-content/plugins/ioxi/alfa-ioxi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /wp-admin/css/colors/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /wp-admin/user/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /htaccess.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/luuf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /.well-known/acme-challenge/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /cgi-bin/cgi-bin/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /cgi-bin/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /wp-ncludes/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /.qiodetme.php/goat.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /wp-content/themes/hello-element/footer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:21 -0400] "GET /wp-admin/maint/min.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-admin/includes/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-admin/luuf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-content/uploads/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-includes/wp-widgets.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /.well-known/pki-validation/sxx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /packed.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /max.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /menu.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /n.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /saka.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-content/uploads/2023/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /marijuana.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /.well-known/acme-challenge/edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-content/plugins/Core-EconX/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-includes/certificates/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /.well-known/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-content/uploads/GzyYU.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-includes/luuf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:22 -0400] "GET /wp-admin/js/widgets/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /wp-admin/network/gzak2w.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /components/com_jea/views/form/tmpl/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /test/test.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /st.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /assets/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /wp-add.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /wp-content/uploads/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /0x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /.well-known/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /wp-admin/images/sidebarh.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /nav-menus.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /wp-content/plugins/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:23 -0400] "GET /cgi-bin/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /worksec.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /.well-known/pki-validation/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /lock360.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /wp-admin/user/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /wp-content/plugins/Core-Econ/upH.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /pegi.PhP8 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /cgi-bin/mariju.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /wp-includes/blocks/button/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /wp-content/plugins/apikey/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /css/content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /wp-content/uploads/2022/bidlbdgp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /wp-content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /components/lig.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:24 -0400] "GET /wp-content/updates.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /cgi-bin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /.well-known/acme-challenge/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /network.php4 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /wp-admin/network/class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /.well-known/pki-validation/webdb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /delpaths.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /wp-admin/alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /wp-admin/css/colors/coffee/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /.well-known/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /cgi-bin/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:25 -0400] "GET /wp-includes/block-supports/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /.well-known/pki-validation/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /init.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /wp-includes/css/options.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /wp-includes/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /wp-admin/images/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /wp-includes/SimplePie/Cache/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /widgets.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /cgi-bin/xdrwxeax.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /wp-includes/mani.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /.well-known/pki-validation/ssl.php?xsec=blocker HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /xl2023.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /.well-known/acme-challenge/license.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /wp-admin/network/index.php4 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /ova.php4https:/worldbdsm.net/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /css/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:26 -0400] "GET /.well-known/pki-validation/wp-sigunq.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:27 -0400] "GET /cjfuns.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:27 -0400] "GET /.well-known/functions.schedules.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:27 -0400] "GET /wzy.php?action=door123 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:27 -0400] "GET /.well-known/acme-challenge/wso112233.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:27 -0400] "GET /.well-known/acme-challenge/doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:27 -0400] "GET /wp-includes/packed.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:27 -0400] "GET /product.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:28 -0400] "GET /.well-known/acme-challenge/blurbs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:28 -0400] "GET /wp-includes/certificates/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:28 -0400] "GET /wp-content/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:28 -0400] "GET /.well-known/pki-validation/doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /checkbox.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-includes/SimplePie/lig.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /.well-known/acme-challenge/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-files.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /.well-known/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /black.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-includes/Requests/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-includes/mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-load.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /buy.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /.well-known/pki-validation/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /word.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-content/plugins/sid/sidwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-includes/js/tinymce/skins/lightgray/fonts/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-includes/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:29 -0400] "GET /wp-admin/css/colors/blue/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:30 -0400] "GET /.well-known/pki-validation/scripts.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:30 -0400] "GET /assets/images/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:30 -0400] "GET /wp-includes/fonts/parx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /gecko.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /cgi-bin/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /wp-includes/Text/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /wp-includes/block-patterns/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /modules/mod_footer/tmpl/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /wp-admin/wp-configs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /f0x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /templates/cassiopeia/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /.well-known/acme-challenge/iR7SzrsOUEP.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /wp-content/uploads/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /.well-known/acme-challenge/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:31 -0400] "GET /wp-includes/fonts/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-includes/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /sh.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-admin/images/thumbs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-content/plugins/elementor/wp-wyrvg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-includes/css/dist/editor/fxp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-admin/network/back.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-admin/cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-includes/customize/lmfi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /version.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:32 -0400] "GET /wp-content HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-admin/wp-admin/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-includes/IXR/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-admin/css/colors/blue/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-admin/images/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-content/themes/pridmag/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-admin/css/colors/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /.well-known/acme-challenge/aboudt.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /wp-includes/certificates/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:33 -0400] "GET /mm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /wp-includes/css/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /indeex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /sys.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /wp-includes/customize/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /wp-includes/certificates/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /wp-admin/users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /templates/luuf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /cgi-bin/users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /wp-admin/network/ayk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /.well-known/pki-validation/baja.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /sys.phhttp:/marykelledy.com/cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /.well-known/pki-validation/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /wp-admin/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /.well-known/zaza.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /.well-known/acme-challenge/shimo.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:34 -0400] "GET /wp-includes/images/smilies/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /max.phhttp:/sushiavenue.fr/alfa-rex.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /.well-known/webdb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /edit-tags.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-includes/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-l0gin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-content/plugins/clara/clara.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.phpcom.au/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /main.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-admin/css/colors/modern/git.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-includes/wp-includes/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-includes/images/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/theme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-content/uploads/2023/user.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /.well-known/pki-validation/iR7SzrsOUEP.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-content/upgrade/ss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-includes/SimplePie/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /wp-includes/shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:35 -0400] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /pgs.phP HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /cgi-bin/iR7SzrsOUEP.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-content/themes/tflow/goat.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wordpress/wp-content/uploads/_input_3_css.phtml HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /.well-known/bs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-content/plugins/revslider/includes/external/page/index.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-includes/images/file1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-activate.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-includes/ID3/rk2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-admin/js/widgets/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-includes/css/dist/wp-l0gin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /fox.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /wp-admin/images/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /ALFA_DATA/alfacgiapi/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /.well-known/pki-validation/flower.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:36 -0400] "GET /class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /wp-blog-header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /wp-admin/images/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /.well-known/pki-validation/wrapper.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /wp-content/uploads/lmfi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /index2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /.well-known/pki-validation/web.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /.well-known/pki-validation/index1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /nf_tracking.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /woh.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /wso112233.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /bala.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /tiny.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /wpkey.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /goat.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /masterjob/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /crop.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /webshell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /filemanager/dialog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /you.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:37 -0400] "GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /wp-content/uploads/2023/05/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /.well-known/fierzashell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /wp-content/themes/wp-classic/inc/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /ioxi01.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /tinyfilemanager/tinyfilemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /ty.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /profile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:38 -0400] "GET /wp-content/plugins/background-image-cropper/ups.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /sts.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /leaf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /wp-content/db-cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /yrlgvupk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /wp-content/themes/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /filemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /wp-content/plugins/TOPXOH/wDR.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /wp-file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /ova-wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /form.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /wpup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /wp-2018.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.67 - - [25/Apr/2025:22:48:39 -0400] "GET /siti.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.67 - - [25/Apr/2025:22:48:40 -0400] "GET /abe.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /.well-known/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /.well-known/pki-validation/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /.well-known/acme-challenge/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-content/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-content/themes/tflow/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wordpress/wp-admin/includes HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/js/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /ALFA_DATA/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-content/upgrade/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/css/colors/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-includes/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-includes/ID3 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-includes/Requests/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-includes/blocks/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-includes/certificates/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-includes/images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/maint/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/meta/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/network/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-admin/user/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:50 -0400] "GET /wp-content/uploads/ao_ccss/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-content/uploads/2021/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-content/plugins/elementor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-content/mu-plugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /upload/image/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wordpress/wp-content/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wordpress/wp-includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /blog/wp-includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /sites/default/files/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /admin/controller/extension/extension/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /admin/editor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /admin/images/slider/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /admin/tmp/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /admin/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /Admin/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /admin/uploads/images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /administrator/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /assets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /cgi-bin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /components/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /home/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /include/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /modules/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /mt/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /site/wp-includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /tmps/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wordpress/wp-admin/includes/wp-admin/js/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-admin/css/colors/light/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-admin/js/widgets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.76 - - [25/Apr/2025:22:48:51 -0400] "GET /wp-content/languages/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/uploads/2022/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/uploads/2023/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/uploads/2024/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/wp-includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/css/dist/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/images/crystal/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/images/media/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/images/smilies/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/images/wlw/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/js/codemirror/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/js/plupload/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/PHPMailer/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/sitemaps/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /cache-wordpress/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /cakil/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /cekidot/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /ubh/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/linkpreview/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/aryabot/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/BrutalShell/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/cache-wordpress/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/cakil/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/cekidot/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/db/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/home/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/limit/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/owfsmac/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:52 -0400] "GET /wp-content/plugins/prenota/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/random/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/ubh/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/Uwogh-Segs/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/wp-diambar/includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/wp-freeform/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/wp-hps/sh/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/wpeazvp/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/zaen/includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/uploads/revslider/templates/immersion-photography/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /patriotic/wp-includes/images/smilies/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/core-stab/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/alera/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/rishi/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/sketch/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/thuoc-nam/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/twentyfive/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/wp-pridmag/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/pridmag/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/themes/zakra/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/uploads/simple-file-list/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /admin/upload/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /up/.well-known/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/plugins/apikey/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /wp-content/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:53 -0400] "GET /css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-admin/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/js/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/SimplePie/XML/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/uploads/wpr-addons/forms/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wordpress/wp-admin/includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/IXR/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/SimplePie/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/Text/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/customize/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/pomo/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/rest-api/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/plugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/plugins/pwnd/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /about/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /plugins/jquery.filer/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/plugins/dummyyummy/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/themes/seotheme/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/plugins/core/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/plugins/revslider/includes/external/page/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/plugins/Cache/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:54 -0400] "GET /wp-content/themes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-includes/theme-compat/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /index/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /fonts/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /js/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /routes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /templates/beez3/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/themes/digital-download/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/wp-theme-editor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /templates/atomic/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/seoo/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-includes/assets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-includes/js/jcrop/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/google-seo-rank/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/erin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/maintenance/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/x/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/seooyanz/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/themes/sky-pro/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/cp-pro/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/uploads/typehub/custom/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/rencontre/inc/photo_import/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/backup-backup/includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/pwnd-1/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /.tmb/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 149.36.48.76 - - [25/Apr/2025:22:48:55 -0400] "GET /wp-content/plugins/fix/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 149.36.48.76 - - [25/Apr/2025:22:48:56 -0400] "GET /includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 149.36.48.76 - - [25/Apr/2025:22:48:56 -0400] "GET /themes/pridmag/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 93.123.109.101 - - [25/Apr/2025:23:14:43 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/121.0.0.0" 34.244.128.224 - - [26/Apr/2025:01:41:11 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Pandalytics/2.0 (https://domainsbot.com/pandalytics/)" 34.244.128.224 - - [26/Apr/2025:01:41:22 -0400] "GET / HTTP/1.1" 301 795 "-" "Pandalytics/2.0 (https://domainsbot.com/pandalytics/)" 154.16.192.74 - - [26/Apr/2025:02:19:44 -0400] "GET /.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 54.67.121.190 - - [26/Apr/2025:02:51:39 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 101.199.254.207 - - [26/Apr/2025:05:00:23 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0" 101.199.254.230 - - [26/Apr/2025:05:00:49 -0400] "GET /favicon.ico HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11" 101.199.254.209 - - [26/Apr/2025:05:00:55 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11" 101.199.254.243 - - [26/Apr/2025:05:01:16 -0400] "GET /sitemap.xml HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11" 54.243.23.32 - - [26/Apr/2025:10:48:33 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.89 Safari/537.36" 34.230.29.101 - - [26/Apr/2025:10:48:33 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.89 Safari/537.36" 54.226.195.71 - - [26/Apr/2025:10:48:33 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.89 Safari/537.36" 52.21.16.234 - - [26/Apr/2025:10:48:33 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.89 Safari/537.36" 34.230.29.101 - - [26/Apr/2025:10:48:35 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/85.0.4182.0 Safari/537.36" 54.243.23.32 - - [26/Apr/2025:10:48:35 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/85.0.4182.0 Safari/537.36" 54.226.195.71 - - [26/Apr/2025:10:48:35 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/85.0.4182.0 Safari/537.36" 52.21.16.234 - - [26/Apr/2025:10:48:36 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/85.0.4182.0 Safari/537.36" 196.251.86.177 - - [26/Apr/2025:11:07:43 -0400] "GET / HTTP/1.1" 301 795 "-" "-" 4.227.36.89 - - [26/Apr/2025:11:34:53 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 66.29.132.124 - - [26/Apr/2025:11:35:00 -0400] "POST /wp-cron.php?doing_wp_cron=1745681699.2810320854187011718750 HTTP/1.1" 301 795 "-" "WordPress/6.8; https://hsec.com.pk" 4.227.36.61 - - [26/Apr/2025:11:34:53 -0400] "GET /robots.txt HTTP/1.1" 200 92 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:01 -0400] "GET /wp-cron.php HTTP/1.1" 200 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:05 -0400] "GET /wp-admin/admin-ajax.php HTTP/1.1" 400 5 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:07 -0400] "GET /wp-sitemap-users-1.xml HTTP/1.1" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:10 -0400] "GET / HTTP/1.1" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:12 -0400] "GET /wp-sitemap-posts-elementor-hf-1.xml HTTP/1.1" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:15 -0400] "GET /wp-sitemap.xml HTTP/1.1" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:17 -0400] "GET /wp-sitemap-taxonomies-category-1.xml HTTP/1.1" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:20 -0400] "GET /wp-sitemap-posts-post-1.xml HTTP/1.1" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 20.171.207.240 - - [26/Apr/2025:11:35:22 -0400] "GET /wp-sitemap-posts-page-1.xml HTTP/1.1" 301 0 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 185.247.137.189 - - [26/Apr/2025:11:46:42 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 4.227.36.89 - - [26/Apr/2025:12:34:33 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 152.32.203.233 - - [26/Apr/2025:12:37:23 -0400] "GET /.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 8.0.0; SM-G960F Build/R16NW) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.84 Mobile Safari/537.36" 152.32.203.233 - - [26/Apr/2025:12:37:24 -0400] "POST / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 8.0.0; SM-G960F Build/R16NW) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.84 Mobile Safari/537.36" 4.227.36.109 - - [26/Apr/2025:13:02:38 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 4.227.36.109 - - [26/Apr/2025:14:53:13 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 4.227.36.89 - - [26/Apr/2025:14:53:13 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 107.151.214.140 - - [26/Apr/2025:16:05:04 -0400] "GET /wp-content/plugins/shell/about.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 4.227.36.89 - - [26/Apr/2025:16:25:10 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 4.227.36.109 - - [26/Apr/2025:16:25:10 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 4.227.36.61 - - [26/Apr/2025:18:13:58 -0400] "GET /robots.txt HTTP/1.1" 200 92 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 4.227.36.89 - - [26/Apr/2025:18:13:58 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 66.29.132.124 - - [26/Apr/2025:18:14:03 -0400] "POST /wp-cron.php?doing_wp_cron=1745705642.9350059032440185546875 HTTP/1.1" 301 795 "-" "WordPress/6.8; https://hsec.com.pk" 20.171.207.240 - - [26/Apr/2025:18:13:59 -0400] "GET /wp-admin/admin-ajax.php HTTP/1.1" 400 5 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 66.249.74.102 - - [26/Apr/2025:20:38:24 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.74.102 - - [26/Apr/2025:20:38:27 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.74.102 - - [26/Apr/2025:20:38:30 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.84 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.74.101 - - [26/Apr/2025:20:38:45 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.74.101 - - [26/Apr/2025:20:38:47 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.7049.95 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"