D7net
Home
Console
Upload
information
Create File
Create Folder
About
Tools
:
/
proc
/
thread-self
/
root
/
proc
/
thread-self
/
root
/
home
/
shubmkcj
/
access-logs
/
Filename :
designpitara.shubhariya.com
back
Copy
95.119.241.245 - - [14/Oct/2025:08:19:56 -0400] "GET /.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 95.119.241.245 - - [14/Oct/2025:08:19:57 -0400] "POST / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 95.119.241.245 - - [14/Oct/2025:08:19:59 -0400] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 301 795 "-" "python-requests/2.28.1" 216.131.112.242 - - [14/Oct/2025:08:29:18 -0400] "GET / HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Avast/131.0.0.0" 54.236.1.52 - - [14/Oct/2025:08:30:10 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Pinterestbot/1.0; +http://www.pinterest.com/bot.html)" 103.163.208.141 - - [14/Oct/2025:08:39:16 -0400] "GET /index/ajax/lang?lang=..//..//application/database HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 155.117.98.112 - - [14/Oct/2025:08:44:49 -0400] "GET /admin/auth/login HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 175.6.217.4 - - [14/Oct/2025:08:52:03 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 185.117.225.145 - - [14/Oct/2025:09:01:50 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "python-requests/2.31.0" 185.117.225.145 - - [14/Oct/2025:09:01:51 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; BitSightBot/1.0)" 172.233.156.98 - - [14/Oct/2025:09:08:30 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Android 7.0; Mobile; LG-M150; rv:68.0) Gecko/68.0 Firefox/68.0" 43.157.188.74 - - [14/Oct/2025:09:10:50 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 155.117.98.111 - - [14/Oct/2025:09:28:59 -0400] "GET /wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 45.156.128.39 - - [14/Oct/2025:09:50:54 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 176.67.82.123 - - [14/Oct/2025:10:00:14 -0400] "GET / HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" 45.80.158.88 - - [14/Oct/2025:10:04:56 -0400] "GET /style.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:01 -0400] "GET /wp-content/style.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:05 -0400] "GET /wp-content/themes/style.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:07 -0400] "GET /wp-admin/style.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:10 -0400] "GET /wp-includes/style.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:11 -0400] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:13 -0400] "GET /file.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:14 -0400] "GET /flower.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:16 -0400] "GET /gifclass.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:17 -0400] "GET /bless.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:20 -0400] "GET /class-t.api.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:23 -0400] "GET /blurbs.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:25 -0400] "GET /akcc.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:28 -0400] "GET /abcd.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:31 -0400] "GET /flex.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:32 -0400] "GET /doc.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:34 -0400] "GET /wp-includes/js/thickbox/thickbox.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:36 -0400] "GET /akc.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:38 -0400] "GET /zoo.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:40 -0400] "GET //zwso.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:42 -0400] "GET /wp-content/plugins/hellopress/wp_mna.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:43 -0400] "GET /bolt.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:45 -0400] "GET /shlo.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:48 -0400] "GET /files.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 45.80.158.88 - - [14/Oct/2025:10:05:51 -0400] "GET /wp-editor.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 216.131.111.114 - - [14/Oct/2025:10:19:11 -0400] "GET / HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" 43.130.39.254 - - [14/Oct/2025:10:27:44 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 2602:fa59:9:1c2::1 - - [14/Oct/2025:10:30:26 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 13.67.185.227 - - [14/Oct/2025:11:08:45 -0400] "GET /aa.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:45 -0400] "GET /abcd.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:46 -0400] "GET /admin.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:46 -0400] "GET /.__info.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:46 -0400] "GET /.bod/.ll/ss.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:46 -0400] "GET /.well-known/.qiodetme.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:47 -0400] "GET /info.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:47 -0400] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:47 -0400] "GET /ALFA_DATA/admin.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:47 -0400] "GET /aaa.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:48 -0400] "GET /about.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:48 -0400] "GET /admin/admin.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:48 -0400] "GET /adminfuns.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:48 -0400] "GET /akcc.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:48 -0400] "GET /alfa.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:49 -0400] "GET /build.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:49 -0400] "GET /buy.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:49 -0400] "GET /chosen.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:49 -0400] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:49 -0400] "GET /css/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:50 -0400] "GET /default.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:50 -0400] "GET /edit.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:50 -0400] "GET /file.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:50 -0400] "GET /filemanager.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:51 -0400] "GET /flower.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:51 -0400] "GET /form.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:51 -0400] "GET /function/function.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:51 -0400] "GET /go.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:51 -0400] "GET /goods.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:52 -0400] "GET /images/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:52 -0400] "GET /images/images/about.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:52 -0400] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:52 -0400] "GET /mari.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:52 -0400] "GET /moon.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:53 -0400] "GET /nc4.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:53 -0400] "GET /wp-admin/about.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:53 -0400] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:53 -0400] "GET /wp-content/upgrade/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:53 -0400] "GET /wp-includes/style-engine/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:54 -0400] "GET /cgi-bin/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:54 -0400] "GET /xleet.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:54 -0400] "GET /wp-admin/includes/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:54 -0400] "GET /wp-content/uploads/admin.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:54 -0400] "GET /wp-good.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:54 -0400] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:55 -0400] "GET /wp-includes/style-engine/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:55 -0400] "GET /xmrlpc.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:55 -0400] "GET /asasx.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:55 -0400] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:55 -0400] "GET /cong.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:56 -0400] "GET /file2.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:56 -0400] "GET /wp-content/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:56 -0400] "GET /wp-content/plugins/yanierin/akcc.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:56 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:57 -0400] "GET /wp-content/wp-conflg.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:57 -0400] "GET /wp-cron.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:57 -0400] "GET /wp-includes/IXR/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:57 -0400] "GET /wp-includes/block-supports/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:57 -0400] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:58 -0400] "GET /wp-includes/fonts/index.php HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:58 -0400] "GET /wp-includes/js/crop/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:58 -0400] "GET /wp-includes/rest-api/ HTTP/1.1" 301 795 "-" "-" 13.67.185.227 - - [14/Oct/2025:11:08:58 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "-" "-" 66.249.74.67 - - [14/Oct/2025:11:57:49 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 85.203.20.30 - - [14/Oct/2025:12:57:59 -0400] "GET / HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" 40.88.21.235 - - [14/Oct/2025:13:18:52 -0400] "GET / HTTP/1.1" 301 795 "http://www.designpitara.com/" "DuckDuckBot/1.1; (+http://duckduckgo.com/duckduckbot.html)" 51.103.109.145 - - [14/Oct/2025:13:31:35 -0400] "GET /aa.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:36 -0400] "GET /about.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:37 -0400] "GET /admin.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:37 -0400] "GET /akc.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:38 -0400] "GET /alfa.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:38 -0400] "GET /asasx.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:39 -0400] "GET /atomlib.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:39 -0400] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:40 -0400] "GET /autoload_classmap/function.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:40 -0400] "GET /abcd.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:41 -0400] "GET /file.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:41 -0400] "GET /wp-includes/IXR/autoload_classmap.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:42 -0400] "GET /makeasmtp.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:42 -0400] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:43 -0400] "GET /wp-content/index.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:43 -0400] "GET /index.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:44 -0400] "GET /files.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:44 -0400] "GET /lock360.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:45 -0400] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:45 -0400] "GET /chosen.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:46 -0400] "GET /goods.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:46 -0400] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:47 -0400] "GET /info.php/aa.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:48 -0400] "GET /wp-content/themes/intense/block-css.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:48 -0400] "GET /about/function.php/aa.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:49 -0400] "GET /wp-includes/PHPMailer/Ab0ut.php/aa.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:49 -0400] "GET /modules/mod_simplefileuploadv1.3/elements/file.php/aa.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:50 -0400] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:51 -0400] "GET /test1.php/aa.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:51 -0400] "GET /flower.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:52 -0400] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:52 -0400] "GET /wp-includes/ID3/autoload_classmap.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:53 -0400] "GET /wp-includes/SimplePie/XML/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:53 -0400] "GET /wp-includes/Text/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:54 -0400] "GET /cgi-bin/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:55 -0400] "GET /doc.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:55 -0400] "GET /edit.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:56 -0400] "GET /functions.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:56 -0400] "GET /img/post.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:57 -0400] "GET /manager.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:58 -0400] "GET /radio.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:58 -0400] "GET /root.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:59 -0400] "GET /sim.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:31:59 -0400] "GET /system_log.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:00 -0400] "GET /update/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:00 -0400] "GET /wp-includes/PHPMailer/wp-conflg.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:01 -0400] "GET /wp-includes/blocks/comments/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:01 -0400] "GET /gecko.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:02 -0400] "GET /xmrlpc.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:03 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:03 -0400] "GET /moon.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:04 -0400] "GET /wp-content/uploads/admin.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:04 -0400] "GET /uploads/admin.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:05 -0400] "GET /info.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:06 -0400] "GET /k.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:06 -0400] "GET /nc4.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:07 -0400] "GET /wp-content/plugins/autoload_classmap.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:07 -0400] "GET /file2.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:08 -0400] "GET /wp-content/themes/chosen.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:09 -0400] "GET /wp-includes/certificates/admin.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:09 -0400] "GET /wp-admin/wp-conflg.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:10 -0400] "GET /wp-content/file.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:11 -0400] "GET /wp-content/plugins/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:11 -0400] "GET /.well-known/ HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:12 -0400] "GET /.well-known/gecko-litespeed.php HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:12 -0400] "GET /2021/01/16/upload-and-download-file-using-multipart-form-over- HTTP/1.1" 301 795 "-" "-" 51.103.109.145 - - [14/Oct/2025:13:32:13 -0400] "GET /WSO.php HTTP/1.1" 301 795 "-" "-" 103.65.236.113 - - [14/Oct/2025:13:34:16 -0400] "GET /404.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:34:30 -0400] "GET /users.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:34:35 -0400] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:34:38 -0400] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:34:41 -0400] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:34:56 -0400] "GET /about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:34:59 -0400] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:35:02 -0400] "GET /wp-header.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.65.236.113 - - [14/Oct/2025:13:35:05 -0400] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 191.96.150.209 - - [14/Oct/2025:13:56:09 -0400] "HEAD / HTTP/1.1" 301 0 "-" "python-requests/2.32.4" 191.96.150.209 - - [14/Oct/2025:13:56:10 -0400] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 14; SM-S918B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 191.96.150.209 - - [14/Oct/2025:13:56:11 -0400] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" 8.219.138.4 - - [14/Oct/2025:14:35:22 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 20.171.207.88 - - [14/Oct/2025:14:52:22 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)" 18.217.26.147 - - [14/Oct/2025:15:07:06 -0400] "GET /robots.txt HTTP/1.1" 301 795 "http://www.designpitara.com/robots.txt" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.3" 196.251.69.152 - - [14/Oct/2025:15:18:33 -0400] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 146.70.194.254 - - [14/Oct/2025:16:05:57 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 37.139.53.124 - - [14/Oct/2025:16:12:57 -0400] "GET / HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Avast/131.0.0.0" 52.179.139.10 - - [14/Oct/2025:16:48:56 -0400] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-" 52.179.139.10 - - [14/Oct/2025:16:48:56 -0400] "GET /cfile.php HTTP/1.1" 301 795 "-" "-" 52.179.139.10 - - [14/Oct/2025:16:48:56 -0400] "GET /wsd.php HTTP/1.1" 301 795 "-" "-" 52.179.139.10 - - [14/Oct/2025:16:48:56 -0400] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-" 103.163.208.141 - - [14/Oct/2025:17:11:40 -0400] "GET /baker.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 85.203.20.242 - - [14/Oct/2025:17:12:29 -0400] "GET / HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" 196.251.86.120 - - [14/Oct/2025:17:23:33 -0400] "GET /wp-json/wp/v2/users HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36" 196.251.86.120 - - [14/Oct/2025:17:23:35 -0400] "GET /?author=1 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_2_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" 51.89.204.22 - - [14/Oct/2025:17:31:19 -0400] "GET /.env HTTP/1.1" 301 795 "-" "python-requests/2.26.0" 51.89.204.22 - - [14/Oct/2025:17:31:20 -0400] "POST / HTTP/1.1" 301 795 "-" "python-requests/2.26.0" 155.117.98.111 - - [14/Oct/2025:18:05:24 -0400] "GET /1234.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 85.203.20.243 - - [14/Oct/2025:18:56:12 -0400] "GET / HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" 178.128.80.211 - - [14/Oct/2025:19:39:59 -0400] "GET / HTTP/1.1" 301 795 "https://acute.kdab.com//blog//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36" 66.249.74.36 - - [14/Oct/2025:19:52:56 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.74.37 - - [14/Oct/2025:19:52:56 -0400] "GET /ads.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 155.117.98.109 - - [14/Oct/2025:20:01:39 -0400] "GET /1234.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0" 2a03:2880:11ff:9:: - - [14/Oct/2025:20:04:33 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)" 2a03:2880:11ff:3:: - - [14/Oct/2025:20:04:34 -0400] "GET / HTTP/1.1" 301 795 "-" "facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)" 2a03:2880:11ff:5:: - - [14/Oct/2025:20:04:35 -0400] "GET / HTTP/1.1" 301 795 "-" "facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)" 2a03:2880:11ff:47:: - - [14/Oct/2025:20:07:58 -0400] "GET /?fbclid=IwZXh0bgNhZW0CMTEAAR592PbXywzqtzchArJM3oQxcNdJ5HRKtwlQv6R2i-xwpsg4eOdR44pO_CdrbQ_aem_OMojeS77iyjcmZQHeI9yHQ HTTP/1.1" 301 795 "https://www.facebook.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36" 220.181.108.111 - - [14/Oct/2025:20:19:05 -0400] "GET /ecommerce-website-design-services HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html)" 119.249.100.244 - - [14/Oct/2025:20:19:09 -0400] "GET /ecommerce-website-design-services HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36" 116.179.33.136 - - [14/Oct/2025:20:19:22 -0400] "GET /ecommerce-website-design-services HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36 Edg/105.0.1343.42" 116.179.33.76 - - [14/Oct/2025:20:19:36 -0400] "GET /ecommerce-website-design-services HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36" 80.94.92.18 - - [14/Oct/2025:20:26:42 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:138.0) Gecko/20100101 Firefox/138.0" 221.229.106.25 - - [14/Oct/2025:20:41:49 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 13.89.129.89 - - [14/Oct/2025:21:23:48 -0400] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:49 -0400] "GET /post.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:49 -0400] "GET /1.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:49 -0400] "GET /flower.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:49 -0400] "GET /admin.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:50 -0400] "GET /file.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:50 -0400] "GET /meta.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:50 -0400] "GET /index.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:50 -0400] "GET /about.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:51 -0400] "GET /randkeyword.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:51 -0400] "GET /goods.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:51 -0400] "GET /hehe.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:51 -0400] "GET /user.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:51 -0400] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:52 -0400] "GET /chosen.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:52 -0400] "GET /functions.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:52 -0400] "GET /cron.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:52 -0400] "GET /edit.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:53 -0400] "GET /gecko-new.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:53 -0400] "GET /cookie.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:53 -0400] "GET /xleet.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:53 -0400] "GET /spip.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:53 -0400] "GET /22.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:54 -0400] "GET /room.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:54 -0400] "GET /disagreed.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:54 -0400] "GET /text.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:54 -0400] "GET /alfa-rex.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:55 -0400] "GET /alfa-rex.php7 HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:55 -0400] "GET /feeds.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:55 -0400] "GET /radio.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:55 -0400] "GET /dropdown.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:55 -0400] "GET /defaults.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:56 -0400] "GET /system.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:56 -0400] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:56 -0400] "GET /xmlrpc.php0 HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:56 -0400] "GET /colors.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:57 -0400] "GET /updates.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:57 -0400] "GET /alfa-rex1.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:57 -0400] "GET /wp-index.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:57 -0400] "GET /wp-admin.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:57 -0400] "GET /alfa.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:58 -0400] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:58 -0400] "GET /locale.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:58 -0400] "GET /wxo.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:58 -0400] "GET /colour.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:58 -0400] "GET /files.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:59 -0400] "GET /install.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:59 -0400] "GET /wp-contentt.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:59 -0400] "GET /config.php7 HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:23:59 -0400] "GET /config.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:00 -0400] "GET /theme.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:00 -0400] "GET /block-bindings.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:00 -0400] "GET /class_api.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:00 -0400] "GET /inputs.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:00 -0400] "GET /root.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:01 -0400] "GET /menu.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:01 -0400] "GET /plugin.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:01 -0400] "GET /cloud.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:01 -0400] "GET /configs.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:02 -0400] "GET /wp-configs.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:02 -0400] "GET /update.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:02 -0400] "GET /2.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:02 -0400] "GET /input.php HTTP/1.1" 301 795 "-" "-" 13.89.129.89 - - [14/Oct/2025:21:24:02 -0400] "GET /aaa.php HTTP/1.1" 301 795 "-" "-" 176.126.103.21 - - [14/Oct/2025:21:47:04 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:47:08 -0400] "GET /js/jquery.counterup.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:47:12 -0400] "GET /js/waypoints.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 196.251.86.120 - - [14/Oct/2025:21:47:14 -0400] "GET /wp-json/wp/v2/users HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 14; SM-G998B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Mobile Safari/537.36" 196.251.86.120 - - [14/Oct/2025:21:47:15 -0400] "GET /?author=1 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:47:16 -0400] "GET /js/venobox.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:47:19 -0400] "GET /js/additional-methods.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:47:40 -0400] "GET /js/vendor/jquery-1.12.4.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" 176.126.103.21 - - [14/Oct/2025:21:47:44 -0400] "GET /js/owl.carousel.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/114.0.5735.110 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:47:47 -0400] "GET /js/isotope.pkgd.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/114.0.5735.110 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:47:51 -0400] "GET /js/magnific.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" 176.126.103.21 - - [14/Oct/2025:21:47:55 -0400] "GET /js/jquery.stellar.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" 176.126.103.21 - - [14/Oct/2025:21:47:59 -0400] "GET /js/main.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" 176.126.103.21 - - [14/Oct/2025:21:48:04 -0400] "GET /js/bootstrap.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/114.0.5735.110 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:48:08 -0400] "GET /js/jquery.meanmenu.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:48:13 -0400] "GET /js/form-validator.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:48:18 -0400] "GET /js/plugins.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:48:23 -0400] "GET /js/jquery.validate.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" 176.126.103.21 - - [14/Oct/2025:21:48:27 -0400] "GET /js/custom.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/113.0.0.0 Safari/537.36" 176.126.103.21 - - [14/Oct/2025:21:48:33 -0400] "GET /js/vendor/modernizr-2.8.3.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" 54.213.63.118 - - [14/Oct/2025:21:59:36 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36" 34.26.153.95 - - [14/Oct/2025:22:42:59 -0400] "GET /media/system/js/core.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 34.26.153.95 - - [14/Oct/2025:22:43:05 -0400] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.71.126.207 - - [14/Oct/2025:22:51:15 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.3" 139.99.241.182 - - [14/Oct/2025:22:56:11 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 43.167.239.66 - - [14/Oct/2025:23:16:58 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 34.210.165.35 - - [14/Oct/2025:23:24:46 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36" 159.65.240.203 - - [14/Oct/2025:23:32:31 -0400] "GET /.git/config HTTP/1.1" 403 1242 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 52.224.179.197 - - [14/Oct/2025:23:54:57 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.96 Safari/537.36" 49.51.243.156 - - [15/Oct/2025:00:56:38 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 176.126.103.21 - - [15/Oct/2025:01:33:41 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15" 54.236.1.51 - - [15/Oct/2025:01:37:38 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Pinterestbot/1.0; +http://www.pinterest.com/bot.html)" 157.66.54.86 - - [15/Oct/2025:01:49:28 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 157.66.54.86 - - [15/Oct/2025:01:49:29 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 157.66.54.86 - - [15/Oct/2025:01:49:30 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 157.66.54.86 - - [15/Oct/2025:01:49:35 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 157.66.54.86 - - [15/Oct/2025:01:49:35 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 157.66.54.86 - - [15/Oct/2025:01:49:36 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 196.251.87.191 - - [15/Oct/2025:01:51:27 -0400] "GET /sites/all/libraries/plupload/examples/upload.php HTTP/1.1" 301 795 "-" "ALittle Client" 110.249.201.12 - - [15/Oct/2025:01:51:52 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; https://zhanzhang.toutiao.com/)" 62.60.131.151 - - [15/Oct/2025:01:57:28 -0400] "GET / HTTP/1.1" 301 795 "-" "Go-http-client/1.1" 43.159.145.149 - - [15/Oct/2025:02:02:31 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 188.130.129.202 - - [15/Oct/2025:02:28:41 -0400] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36/Nutch-1.21-SNAPSHOT" 188.130.129.202 - - [15/Oct/2025:02:28:59 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36/Nutch-1.21-SNAPSHOT" 14.215.163.132 - - [15/Oct/2025:02:32:55 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 13.42.205.55 - - [15/Oct/2025:02:48:25 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 13.42.205.55 - - [15/Oct/2025:02:48:31 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 13.42.205.55 - - [15/Oct/2025:02:48:41 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 196.251.73.73 - - [15/Oct/2025:02:52:09 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 138.197.43.185 - - [15/Oct/2025:04:14:52 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36" 138.197.43.185 - - [15/Oct/2025:04:14:52 -0400] "GET /favicon.ico HTTP/1.1" 301 795 "http://designpitara.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36" 52.138.216.201 - - [15/Oct/2025:04:22:22 -0400] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:23 -0400] "GET /CLA.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:24 -0400] "GET /wsd.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:25 -0400] "GET /gmo.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:25 -0400] "GET /nc4.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:25 -0400] "GET /zwlj.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:26 -0400] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:26 -0400] "GET /aa18.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:27 -0400] "GET /oxse.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:27 -0400] "GET /sec.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:28 -0400] "GET /ccaef.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:28 -0400] "GET /f.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:29 -0400] "GET /pow.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:29 -0400] "GET /cool.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:30 -0400] "GET /kesa.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:30 -0400] "GET /ev.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:31 -0400] "GET /wpc.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:31 -0400] "GET /lc.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:32 -0400] "GET /20.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:32 -0400] "GET /jlex.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:33 -0400] "GET /bb5.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:33 -0400] "GET /dxb.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:34 -0400] "GET /weo.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:34 -0400] "GET /png.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:35 -0400] "GET /tes.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:35 -0400] "GET /shell.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:36 -0400] "GET /cccc.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:36 -0400] "GET /k.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:37 -0400] "GET /wawja.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:37 -0400] "GET /chatypro.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:37 -0400] "GET /wo.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:38 -0400] "GET /xex.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:38 -0400] "GET /cmnk.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:39 -0400] "GET /moon.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:39 -0400] "GET /o2ll13.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:40 -0400] "GET /xl6.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:40 -0400] "GET /pu.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:41 -0400] "GET /n1.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:41 -0400] "GET /xD.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:42 -0400] "GET /alf.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:42 -0400] "GET /rafa.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:43 -0400] "GET /1a.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:43 -0400] "GET /shlo.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:44 -0400] "GET /m.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:44 -0400] "GET /f5.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:45 -0400] "GET /wefile.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:45 -0400] "GET /eifjp.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:46 -0400] "GET /new4.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:46 -0400] "GET /ac.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:47 -0400] "GET /rx.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:47 -0400] "GET /xs.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:48 -0400] "GET /x.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:48 -0400] "GET /cfile.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:49 -0400] "GET /xxa.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:49 -0400] "GET /aa.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:50 -0400] "GET /gfile.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:50 -0400] "GET /nc4.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:51 -0400] "GET /ffile.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:51 -0400] "GET /gold.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:51 -0400] "GET /bless2.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:52 -0400] "GET /222.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:52 -0400] "GET /xhouf.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:53 -0400] "GET /num.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:53 -0400] "GET /slo.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:54 -0400] "GET /ava.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:54 -0400] "GET /aa17.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:55 -0400] "GET /wander.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:55 -0400] "GET /filei.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:56 -0400] "GET /ot.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:56 -0400] "GET /ol.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:57 -0400] "GET /rak.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:57 -0400] "GET /ee.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:58 -0400] "GET /tcp.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:58 -0400] "GET /jx.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:59 -0400] "GET /vanta.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:22:59 -0400] "GET /acxx.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:23:00 -0400] "GET /ahax.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:23:00 -0400] "GET /akc.php HTTP/1.1" 301 795 "-" "-" 52.138.216.201 - - [15/Oct/2025:04:23:01 -0400] "GET /v2.php HTTP/1.1" 301 795 "-" "-" 159.65.240.203 - - [15/Oct/2025:04:27:28 -0400] "GET /.git/config HTTP/1.1" 403 1242 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 85.204.70.106 - - [15/Oct/2025:04:32:05 -0400] "GET /wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:07 -0400] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:07 -0400] "GET /wp-content/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:08 -0400] "GET /wp-includes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:09 -0400] "GET /readme.html HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:09 -0400] "GET /license.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:10 -0400] "GET /wp-json/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:10 -0400] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:11 -0400] "GET /wp-admin/admin-ajax.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:11 -0400] "GET /wp-admin/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:12 -0400] "GET /wp-content/themes/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:12 -0400] "GET /wp-content/plugins/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:13 -0400] "GET /wp-content/uploads/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:13 -0400] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:14 -0400] "GET /wp-admin/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:14 -0400] "GET /wp-admin/profile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:15 -0400] "GET /wp-admin/users.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:15 -0400] "GET /wp-admin/options-general.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:16 -0400] "GET /wp-includes/js/wp-embed.min.js HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:17 -0400] "GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:19 -0400] "GET /wp-includes/css/dashicons.min.css HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:20 -0400] "GET /wp-json/wp/v2/types/post HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:21 -0400] "GET /wp-json/wp/v2/pages HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:21 -0400] "GET /wp-json/wp/v2/media HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:22 -0400] "GET /wp-json/wp/v2/categories HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:22 -0400] "GET /wp-json/wp/v2/tags HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:23 -0400] "GET /wp-json/wp/v2/comments HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:23 -0400] "GET /wp-json/wp/v2/settings HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:24 -0400] "GET /wp-json/wp/v2/themes HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:24 -0400] "GET /wp-json/wp/v2/plugins HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:25 -0400] "GET /wp-json/wp/v2/block-types HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:26 -0400] "GET /wp-json/wp/v2/statuses HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:26 -0400] "GET /wp-json/wp/v2/taxonomies HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 85.204.70.106 - - [15/Oct/2025:04:32:27 -0400] "GET /wp-json/wp/v2/post-types HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:89.0) Gecko/20100101 Firefox/89.0" 64.225.8.19 - - [15/Oct/2025:05:30:41 -0400] "GET /.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0" 64.225.8.19 - - [15/Oct/2025:05:32:22 -0400] "GET /.vscode/sftp.json HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0" 64.225.8.19 - - [15/Oct/2025:05:32:42 -0400] "GET /sftp-config.json HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0" 157.15.40.76 - - [15/Oct/2025:05:58:26 -0400] "GET /.well-known/acme-challenge/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:26 -0400] "GET /.well-known/acme-challenge/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:26 -0400] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:26 -0400] "GET /.tmb/wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:26 -0400] "GET /?loadme HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:28 -0400] "GET /.well-known/content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:28 -0400] "GET /.well-known/pki-validation/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:28 -0400] "GET /.well-known/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:28 -0400] "GET /.well-known/gelay.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:29 -0400] "GET /.well-known/acme-challenge/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:30 -0400] "GET /.well-known/wp-signup.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:30 -0400] "GET /0.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:30 -0400] "GET /.well-known/pki-validation/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:30 -0400] "GET /.well-knownold/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:30 -0400] "GET /.wp-cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:31 -0400] "GET /00.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:31 -0400] "GET /01.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:31 -0400] "GET /0byte.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:31 -0400] "GET /10.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:31 -0400] "GET /1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:32 -0400] "GET /100.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:32 -0400] "GET /123.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:32 -0400] "GET /3.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:32 -0400] "GET /2.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:32 -0400] "GET /4.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:33 -0400] "GET /403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:33 -0400] "GET /406.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:33 -0400] "GET /404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:33 -0400] "GET /500.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:33 -0400] "GET /5.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:34 -0400] "GET /7.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:34 -0400] "GET /6.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:34 -0400] "GET /666.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:34 -0400] "GET /8.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:34 -0400] "GET /777.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /9.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /abc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /a1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /alf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /al.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /administrator.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:35 -0400] "GET /alf4.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:36 -0400] "GET /anon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:36 -0400] "GET /alfa123.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:36 -0400] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:36 -0400] "GET /alpha.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:36 -0400] "GET /alwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:37 -0400] "GET /asd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:37 -0400] "GET /assets/css/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:37 -0400] "GET /anons79.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:37 -0400] "GET /atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:37 -0400] "GET /anonsec.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /bak.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /base.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /b.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /batm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /blog/wp-includes/fonts/dev.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /black.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /blog/wp-includes/fonts/iqb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /by.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:38 -0400] "GET /byp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:39 -0400] "GET /wp-admin/user/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:39 -0400] "GET /wp-content/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:39 -0400] "GET /wp-includes/sitemaps/providers/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:39 -0400] "GET /wp-includes/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:39 -0400] "GET /.well-known/acme-challenge/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:40 -0400] "GET /wp-admin/css/colors/ectoplasm/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:40 -0400] "GET /wp-includes/pomo/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:40 -0400] "GET /wp-includes/certificates/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:40 -0400] "GET /wp-includes/PHPMailer/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:40 -0400] "GET /wp-includes/customize/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:41 -0400] "GET /wp-admin/network/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:41 -0400] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:41 -0400] "GET /wp-includes/theme-compat/zmFM.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:41 -0400] "GET /wp-admin/js/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:41 -0400] "GET /wp-admin/images/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-includes/SimplePie/Content/Type/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-admin/css/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-content/languages/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-includes/Requests/Auth/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-admin/css/colors/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-content/IXR/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-content/upgrade/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-content/plugins/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-admin/maint/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:42 -0400] "GET /wp-admin/network/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:43 -0400] "GET /byp403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:43 -0400] "GET /wp-content/uploads/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:43 -0400] "GET /bypass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:43 -0400] "GET /byp7.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:43 -0400] "GET /bypas.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:44 -0400] "GET /c.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:44 -0400] "GET /byps.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:44 -0400] "GET /c99.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:44 -0400] "GET /cgi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:44 -0400] "GET /cgi-bin/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /con.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /cmd.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /compat.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /cong.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /config.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /d.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:45 -0400] "GET /css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:46 -0400] "GET /dev.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:46 -0400] "GET /db.php?u HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:46 -0400] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:46 -0400] "GET /doc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:46 -0400] "GET /docindex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:47 -0400] "GET /eagle.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:47 -0400] "GET /e.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:47 -0400] "GET /error.php?phpshells HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:47 -0400] "GET /exploit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:47 -0400] "GET /evil.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:48 -0400] "GET /f0x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:48 -0400] "GET /f.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:48 -0400] "GET /fg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:48 -0400] "GET /file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:48 -0400] "GET /fierza.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /flame.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /filemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /foxx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /fm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /fx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /gecko.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /g.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:49 -0400] "GET /gel4y.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:50 -0400] "GET /gelay.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:50 -0400] "GET /green.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:50 -0400] "GET /hello.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:50 -0400] "GET /h.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:50 -0400] "GET /haxor.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:51 -0400] "GET /hi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:51 -0400] "GET /i.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:51 -0400] "GET /idx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:51 -0400] "GET /id.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:51 -0400] "GET /if.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:52 -0400] "GET /index/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:52 -0400] "GET /images/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:52 -0400] "GET /indoxploit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:52 -0400] "GET /init.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:52 -0400] "GET /info.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:53 -0400] "GET /install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:53 -0400] "GET /inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:53 -0400] "GET /iq.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:53 -0400] "GET /jindex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:53 -0400] "GET /j.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:54 -0400] "GET /js.php?get HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:54 -0400] "GET /js.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:54 -0400] "GET /kn.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:54 -0400] "GET /k.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:54 -0400] "GET /kk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /leaf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /loader/ff.php?pass=shell HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /l.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /load.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /lf.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /lock.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /local.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:55 -0400] "GET /lock360.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:56 -0400] "GET /lx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:56 -0400] "GET /lv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:56 -0400] "GET /mah.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:56 -0400] "GET /mad.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:56 -0400] "GET /m.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:57 -0400] "GET /manager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:57 -0400] "GET /mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:57 -0400] "GET /mari.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:57 -0400] "GET /marijuana.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:57 -0400] "GET /mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /MARIJUANA.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /mas.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /mini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /mass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /min.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /mrjn.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /minishell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /new.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /n.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:58:58 -0400] "GET /new-index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /ninja.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /NewFile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /nn.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /o.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /ok.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /phpinfo.php?re@=vo@ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /p.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:00 -0400] "GET /priv.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:01 -0400] "GET /pi.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:01 -0400] "GET /priv8.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:02 -0400] "GET /qindex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:02 -0400] "GET /radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:02 -0400] "GET /r00t.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:02 -0400] "GET /q.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:02 -0400] "GET /r.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /radio.php?pass=shell HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /readme.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /raw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /rss.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /root.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /s.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /send.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /shl.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /shx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:03 -0400] "GET /seo.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:04 -0400] "GET /simple.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:04 -0400] "GET /Sym.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:04 -0400] "GET /style.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:04 -0400] "GET /sym.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:04 -0400] "GET /sym403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:05 -0400] "GET /symlink.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:05 -0400] "GET /sys.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:05 -0400] "GET /t.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:05 -0400] "GET /tes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:05 -0400] "GET /test.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:06 -0400] "GET /up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:06 -0400] "GET /u.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:06 -0400] "GET /tinyfilemanager.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:06 -0400] "GET /unknown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:06 -0400] "GET /upfile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:07 -0400] "GET /upgrade.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:07 -0400] "GET /ups.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:07 -0400] "GET /upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:07 -0400] "GET /uploader.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:07 -0400] "GET /uploads.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:08 -0400] "GET /usr.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:08 -0400] "GET /v.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:08 -0400] "GET /w.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:08 -0400] "GET /vuln.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:08 -0400] "GET /wp_cron.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp_wrong_datlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-access.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-activate.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-admin/alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-admin/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:09 -0400] "GET /wp-admin/css/colors/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:10 -0400] "GET /wp-admin/fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:10 -0400] "GET /wp-admin/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:10 -0400] "GET /wp-admin/includes/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:10 -0400] "GET /wp-admin/images/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:10 -0400] "GET /wp-admin/includes/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:11 -0400] "GET /wp-admin/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:11 -0400] "GET /wp-admin/install.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:11 -0400] "GET /wp-admin/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:11 -0400] "GET /wp-admin/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:11 -0400] "GET /wp-admin/maint/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:12 -0400] "GET /wp-admin/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:12 -0400] "GET /wp-admin/upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:12 -0400] "GET /wp-admin/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:12 -0400] "GET /wp-admin/wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:12 -0400] "GET /wp-admin/user/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-atom.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-blog-header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-conctent.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-config-sample.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-conflg.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-content/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-content/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:13 -0400] "GET /wp-content/flame.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/function.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/languages/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/plugins/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/plugins/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/themes/alera/alpha.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:15 -0400] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:16 -0400] "GET /wp-content/themes/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:16 -0400] "GET /wp-content/wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:16 -0400] "GET /wp-content/uploads/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:16 -0400] "GET /wp-content/themes/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:16 -0400] "GET /wp-content/uploads/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:17 -0400] "GET /wp-content/xleet.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:17 -0400] "GET /wp-cron.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:17 -0400] "GET /wp-includes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:17 -0400] "GET /wp-defaul.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:17 -0400] "GET /wp-files.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/assets/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/assets/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/content.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/certificates/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/cron.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/css/gelay.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/css/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/css/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:18 -0400] "GET /wp-includes/css/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:19 -0400] "GET /wp-includes/customize/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:19 -0400] "GET /wp-includes/default.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:19 -0400] "GET /wp-includes/fonts/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:19 -0400] "GET /wp-includes/fonts/iq.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:19 -0400] "GET /wp-includes/fonts/dev.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:20 -0400] "GET /wp-includes/fonts/iqb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:20 -0400] "GET /wp-includes/fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:20 -0400] "GET /wp-includes/ID3/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:20 -0400] "GET /wp-includes/images/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:20 -0400] "GET /wp-includes/images/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/js/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/IXR/index HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/js/crop/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/l10n.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/pomo/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/library.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:21 -0400] "GET /wp-includes/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:22 -0400] "GET /wp-includes/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:22 -0400] "GET /wp-includes/rest-api/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:22 -0400] "GET /wp-includes/Requests/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:22 -0400] "GET /wp-includes/rest-api/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:22 -0400] "GET /wp-includes/Text/Diff/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:23 -0400] "GET /wp-includes/Text/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:23 -0400] "GET /wp-includes/up.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:23 -0400] "GET /wp-includes/widgets/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:23 -0400] "GET /wp-includes/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:23 -0400] "GET /wp-includes/upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-includes/widgets/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-includes/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-includes/xmlrpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-includes/x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-trackback.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-load.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:24 -0400] "GET /wp-mails.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:25 -0400] "GET /wp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:25 -0400] "GET /wp-wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:25 -0400] "GET /wp/wp-includes/fonts/dev.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:25 -0400] "GET /wp1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:25 -0400] "GET /wp/wp-includes/fonts/iqb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:26 -0400] "GET /wpindex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:26 -0400] "GET /x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:26 -0400] "GET /wsanon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:26 -0400] "GET /wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:26 -0400] "GET /wso403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:27 -0400] "GET /xleet-shell.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:27 -0400] "GET /xmrlpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:27 -0400] "GET /xleet.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:27 -0400] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:27 -0400] "GET /xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:28 -0400] "GET /xx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:28 -0400] "GET /zero.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:28 -0400] "GET /xxx.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:28 -0400] "GET /z.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:28 -0400] "GET /y.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 157.15.40.76 - - [15/Oct/2025:05:59:28 -0400] "GET /zone.php?phpshell HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 43.164.197.209 - - [15/Oct/2025:06:24:11 -0400] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"