Linux amd.servercpanel.com 5.14.0-570.25.1.el9_6.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Jul 9 04:57:09 EDT 2025 x86_64
LiteSpeed
Server IP : 161.248.188.165 & Your IP : 216.73.216.219
Domains :
Cant Read [ /etc/named.conf ]
User : oishifashion
Terminal
Auto Root
Create File
Create Folder
Localroot Suggester
Backdoor Destroyer
Readme
/
usr /
local /
apache /
domlogs /
oishifashion /
Delete
Unzip
Name
Size
Permission
Date
Action
12ap.oishifashion.com
8.71
KB
-rw-r-----
2025-12-23 03:21
12ap.oishifashion.com-ssl_log
15.68
MB
-rw-r-----
2025-12-23 06:58
ap.oishifashion.com
13.09
KB
-rw-r-----
2025-12-23 02:03
ap.oishifashion.com-ssl_log
89.18
MB
-rw-r-----
2025-12-23 07:00
ap.tsgbd.com
24.12
KB
-rw-r-----
2025-12-23 06:58
ap.tsgbd.com-ssl_log
1.28
MB
-rw-r-----
2025-12-23 06:58
ap.tsgbd.com.oishifashion.com
0
B
-rw-r-----
2025-08-12 12:39
ap.tsgbd.com.oishifashion.com-ssl_log
0
B
-rw-r-----
2025-08-12 12:39
ap99.tsgbd.com
392
B
-rw-r-----
2025-12-22 15:48
ap99.tsgbd.com-ssl_log
9.51
KB
-rw-r-----
2025-12-23 05:35
drug.oishifashion.com
8.71
KB
-rw-r-----
2025-12-23 05:52
drug.oishifashion.com-ssl_log
14.99
MB
-rw-r-----
2025-12-23 06:58
etp.oishifashion.com
224
B
-rw-r-----
2025-12-23 02:20
etp.oishifashion.com-ssl_log
1.23
MB
-rw-r-----
2025-12-23 06:58
oishifashion.com
104.71
KB
-rw-r-----
2025-12-23 06:58
oishifashion.com-ssl_log
634.05
KB
-rw-r-----
2025-12-23 06:58
pharmacy.oishifashion.com
636
B
-rw-r-----
2025-12-22 17:46
pharmacy.oishifashion.com-ssl_log
40.58
MB
-rw-r-----
2025-12-23 06:58
tmds.tsgbd.com
38.59
KB
-rw-r-----
2025-12-23 06:42
tmds.tsgbd.com-ssl_log
245.87
KB
-rw-r-----
2025-12-23 06:58
tsgbd.com.oishifashion.com
104.16
KB
-rw-r-----
2025-12-23 06:25
tsgbd.com.oishifashion.com-ssl_log
153.37
KB
-rw-r-----
2025-12-23 06:58
tssms.tsgbd.com
8.95
KB
-rw-r-----
2025-12-23 05:01
tssms.tsgbd.com-ssl_log
49.04
MB
-rw-r-----
2025-12-23 06:58
tt.oishifashion.com
224
B
-rw-r-----
2025-12-23 02:20
tt.oishifashion.com-ssl_log
18.66
MB
-rw-r-----
2025-12-23 06:58
Save
Rename
120.71.59.24 - - [22/Dec/2025:19:37:46 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 170.106.73.216 - - [22/Dec/2025:19:42:50 +0600] "GET / HTTP/1.1" 200 14617 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 66.249.75.172 - - [22/Dec/2025:20:07:52 +0600] "GET /robots.txt HTTP/1.1" 200 96 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" 114.119.142.97 - - [22/Dec/2025:20:33:19 +0600] "GET /robots.txt HTTP/1.1" 200 119 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" 159.223.57.188 - - [22/Dec/2025:21:30:25 +0600] "POST /wp-login.php HTTP/1.1" 200 14610 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 159.223.57.188 - - [22/Dec/2025:21:30:26 +0600] "GET /wp-admin/ HTTP/1.1" 200 811 "www.google.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 43.166.244.251 - - [22/Dec/2025:21:41:50 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 159.223.57.188 - - [22/Dec/2025:21:55:46 +0600] "POST /wp-login.php HTTP/1.1" 200 14610 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 159.223.57.188 - - [22/Dec/2025:21:55:47 +0600] "GET /wp-admin/ HTTP/1.1" 200 811 "www.google.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 62.60.131.162 - - [22/Dec/2025:22:13:00 +0600] "GET / HTTP/1.1" 200 14610 "-" "Go-http-client/1.1" 68.218.109.167 - - [22/Dec/2025:22:44:36 +0600] "GET /wp-good.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:37 +0600] "GET /ioxi-o.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:39 +0600] "GET /file.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:40 +0600] "GET /wp-admin/css/colors/blue HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:40 +0600] "GET /wp-signin.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:41 +0600] "GET /abcd.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:42 +0600] "GET /wp-includes/block-bindings HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:43 +0600] "GET /about.php HTTP/1.1" 200 349 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:43 +0600] "GET /bless.php HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:44 +0600] "GET /images/install.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:45 +0600] "GET /num.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:46 +0600] "GET /txets.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:47 +0600] "GET /wp-blog.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:49 +0600] "GET /wp-content/admin-header.php HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:50 +0600] "GET /wp-content/themes/about.php HTTP/1.1" 403 1242 "https://www.yahoo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:50 +0600] "GET /wp-includes/js/dist HTTP/1.1" 301 795 "https://www.bing.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:50 +0600] "GET /wp-includes/js/dist/ HTTP/1.1" 200 1894 "https://www.bing.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:50 +0600] "GET /wp-includes/rest-api/fields HTTP/1.1" 403 1242 "https://www.yahoo.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:50 +0600] "GET /wp.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:52 +0600] "GET /admin.php HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:53 +0600] "GET /adminfuns.php HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:53 +0600] "GET /chosen.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:54 +0600] "GET /classwithtostring.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:55 +0600] "GET /edit.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:56 +0600] "GET /goods.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:44:58 +0600] "GET /k.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:44:59 +0600] "GET /mah/function.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:00 +0600] "GET /wp-conflg/function.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:01 +0600] "GET /wp-content/admin.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:03 +0600] "GET /wp-content/languages/index.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:04 +0600] "GET /wp-includes/PHPMailer/index.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:04 +0600] "GET /wp-includes/images HTTP/1.1" 301 795 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:04 +0600] "GET /wp-includes/images/ HTTP/1.1" 200 2108 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:04 +0600] "GET /wp-includes/images/index.php HTTP/1.1" 404 1251 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:04 +0600] "GET /wp-includes/js/dist/development HTTP/1.1" 404 1251 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:05 +0600] "GET /wp-user.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:06 +0600] "GET /404.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:07 +0600] "GET /akcc.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:08 +0600] "GET /gg.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:09 +0600] "GET /mah.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:10 +0600] "GET /new.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:12 +0600] "GET /themes.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:13 +0600] "GET /uploads/index.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:14 +0600] "GET /wp-admin HTTP/1.1" 301 795 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 68.218.109.167 - - [22/Dec/2025:22:45:14 +0600] "GET /wp-admin/ HTTP/1.1" 200 2232 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 68.218.109.167 - - [22/Dec/2025:22:45:14 +0600] "GET /wp-admin/classwithtostring.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:15 +0600] "GET /wp-admin/css HTTP/1.1" 301 795 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:15 +0600] "GET /wp-admin/css/ HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:16 +0600] "GET /wp-admin/css/about.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:16 +0600] "GET /wp-admin/includes/colour.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:17 +0600] "GET /wp-admin/js HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:18 +0600] "GET /wp-admin/js/autoload_classmap.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:19 +0600] "GET /wp-admin/js/widgets HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:21 +0600] "GET /wp-content/autoload_classmap.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:22 +0600] "GET /wp-content/backups-dup-lite HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:23 +0600] "GET /wp-content/languages HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:24 +0600] "GET /wp-content/plugins/admin.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:25 +0600] "GET /wp-content/themes/admin.php HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:25 +0600] "GET /wp-content/uploads HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:27 +0600] "GET /wp-content/uploads/2025 HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:28 +0600] "GET /wp-includes/IXR HTTP/1.1" 403 1242 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:28 +0600] "GET /wp-includes/IXR/index.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:28 +0600] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:28 +0600] "GET /wp-includes/Text HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 12; V2134) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:28 +0600] "GET /wp-includes/Text/Diff/Engine HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:28 +0600] "GET /wp-includes/block-bindings/index.php HTTP/1.1" 403 1242 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:29 +0600] "GET /wp-includes/block-supports HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:29 +0600] "GET /wp-includes/blocks/code HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:29 +0600] "GET /wp-includes/customize/chosen.php HTTP/1.1" 403 1242 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:29 +0600] "GET /wp-includes/html-api/index.php HTTP/1.1" 403 1242 "https://www.yahoo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:29 +0600] "GET /wp-includes/index.php HTTP/1.1" 404 1251 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:29 +0600] "GET /wp-includes/js/dist/development/index.php HTTP/1.1" 404 1251 "https://www.yahoo.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:29 +0600] "GET /wp-includes/pomo/index.php HTTP/1.1" 403 1242 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 68.218.109.167 - - [22/Dec/2025:22:45:30 +0600] "GET /wp-includes/rest-api HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 68.218.109.167 - - [22/Dec/2025:22:45:30 +0600] "GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 68.218.109.167 - - [22/Dec/2025:22:45:30 +0600] "GET /wp-includes/theme-compat HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 4.214.0.127 - - [22/Dec/2025:22:52:44 +0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:45 +0600] "GET /1.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:46 +0600] "GET /function.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:47 +0600] "GET /wp-admin/js/wp-conflg.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:49 +0600] "GET /NewFile.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:50 +0600] "GET /about.php HTTP/1.1" 200 349 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:50 +0600] "GET /acp.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:52 +0600] "GET /admin.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:53 +0600] "GET /admin/js/wp-conflg.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:54 +0600] "GET /wp-conflg.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:55 +0600] "GET /ahax.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:57 +0600] "GET /asasx.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:58 +0600] "GET /bless.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:52:59 +0600] "GET /bolt.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:00 +0600] "GET /bs1.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:02 +0600] "GET /chosen.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:03 +0600] "GET /conflg.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:04 +0600] "GET /db.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:05 +0600] "GET /default.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:07 +0600] "GET /dropdown.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:08 +0600] "GET /m.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:09 +0600] "GET /index.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:10 +0600] "GET /file.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:11 +0600] "GET /file30.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:13 +0600] "GET /file9.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:14 +0600] "GET /fm.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:15 +0600] "GET /goods.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:16 +0600] "GET /k.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:17 +0600] "GET /lock360.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:18 +0600] "GET /manage.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:20 +0600] "GET /index/function.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:21 +0600] "GET /ot.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:22 +0600] "GET /post.php HTTP/1.1" 200 39559 "-" "-" 4.214.0.127 - - [22/Dec/2025:22:53:23 +0600] "GET /wp.php HTTP/1.1" 200 39559 "-" "-" 103.82.24.230 - - [22/Dec/2025:22:46:05 +0600] "HEAD / HTTP/1.1" 200 0 "https://tsgbd.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 178.128.96.10 - - [22/Dec/2025:23:04:43 +0600] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0" 68.183.191.159 - - [22/Dec/2025:23:14:32 +0600] "GET /blurbs.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 Chrome/108.0.0.0 Safari/537.36" 68.183.191.159 - - [22/Dec/2025:23:14:33 +0600] "GET /class-t.api.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 Chrome/108.0.0.0 Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:37 +0600] "GET /wp-content/plugins/dhon/newsfeed.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:41 +0600] "GET /wp-content/plugins/wpcall-button/button-image.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:16 +0600] "GET /wp-content/plugins/pwnd/dropdown.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:51 +0600] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:01 +0600] "GET /index/function.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:12 +0600] "GET /wp-content/plugins/pwnd/about.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:35 +0600] "GET /wp-content/plugins/helloapx/wp-apxupx.php?apx=upx HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:39 +0600] "GET /wp-content/plugins/NexusLeadsReal/mini.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:54 +0600] "GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1" 404 1251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:04 +0600] "GET /wp-admin/network/index.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:06 +0600] "GET /wp-includes/fonts/about.php HTTP/1.1" 403 1242 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:21 +0600] "GET /wp-content/plugins/pwnd/db.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:43 +0600] "GET /wp-content/plugins/Core-Econ/upH.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:07 +0600] "GET /wp-includes/about.php HTTP/1.1" 403 1242 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:14 +0600] "GET /wp-content/plugins/pwnd/function.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:56 +0600] "GET /wp-content/plugins/index.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:59 +0600] "GET /wp-admin/images/index.php HTTP/1.1" 404 1251 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:19 +0600] "GET /wp-content/plugins/pwnd/nc4r3p.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:48 +0600] "GET /wp-content/plugins/phpad/acp.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:50:45 +0600] "GET /wp-content/plugins/phpadmin/acp.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 165.22.233.155 - - [22/Dec/2025:23:51:09 +0600] "GET /wp-content/plugins/pwnd/acme-salvation.php HTTP/1.1" 200 14610 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 158.94.208.149 - - [23/Dec/2025:00:11:33 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 52.185.184.125 - - [23/Dec/2025:00:10:20 +0600] "POST /wp-login.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 52.185.184.125 - - [23/Dec/2025:00:10:21 +0600] "GET /wp-admin/ HTTP/1.1" 200 811 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 64.252.203.42 - - [23/Dec/2025:00:27:03 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 64.252.203.42 - - [23/Dec/2025:00:26:56 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 164.92.97.119 - - [23/Dec/2025:00:58:48 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" 13.74.149.244 - - [23/Dec/2025:02:19:31 +0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:32 +0600] "GET /nc4.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:33 +0600] "GET /d4.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:34 +0600] "GET /ad.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:36 +0600] "GET /dlex.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:37 +0600] "GET /classwithtostring.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:38 +0600] "GET /pass.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:40 +0600] "GET /good.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:41 +0600] "GET /ext.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:42 +0600] "GET /class20.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:43 +0600] "GET /css/index.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:45 +0600] "GET /aa.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:46 +0600] "GET /npi.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:47 +0600] "GET /ahax.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:49 +0600] "GET /pop.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:50 +0600] "GET /file17.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:51 +0600] "GET /wp-includes/fonts/themes.php HTTP/1.1" 403 1242 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:51 +0600] "GET /about.php HTTP/1.1" 200 349 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:52 +0600] "GET /litanies.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:53 +0600] "GET /g.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:54 +0600] "GET /readme.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:55 +0600] "GET /kwm4.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:57 +0600] "GET /just2.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:58 +0600] "GET /png.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:19:59 +0600] "GET /geger.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:01 +0600] "GET /let.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:02 +0600] "GET /np.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:03 +0600] "GET /ask.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:05 +0600] "GET /CLA.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:06 +0600] "GET /wp-admin/index.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:07 +0600] "GET /mek.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:08 +0600] "GET /fjpeb.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:10 +0600] "GET /ex.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:11 +0600] "GET /asd67.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:12 +0600] "GET /zwso.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:14 +0600] "GET /alfa.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:15 +0600] "GET /shlo.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:16 +0600] "GET /sec.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:17 +0600] "GET /natural.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:19 +0600] "GET /1.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:20 +0600] "GET /z.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:21 +0600] "GET /law.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:23 +0600] "GET /bluejackets.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:24 +0600] "GET /php.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:25 +0600] "GET /sx21_1.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:27 +0600] "GET /1aa.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:29 +0600] "GET /nx9.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:30 +0600] "GET /file.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:32 +0600] "GET /aw.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:33 +0600] "GET /sfvul.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:34 +0600] "GET /icdwb.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:35 +0600] "GET /ticket.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:37 +0600] "GET /elp.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:38 +0600] "GET /k.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:39 +0600] "GET /amphicyon.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:41 +0600] "GET /wsad.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:42 +0600] "GET /lock1.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:43 +0600] "GET /xp.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:44 +0600] "GET /e.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:46 +0600] "GET /v3.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:47 +0600] "GET /akcc.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:48 +0600] "GET /minik.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:50 +0600] "GET /asasx.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:51 +0600] "GET /nx.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:52 +0600] "GET /themes.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:54 +0600] "GET /acp.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:55 +0600] "GET /xpw.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:56 +0600] "GET /lufix.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:57 +0600] "GET /akp.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:20:59 +0600] "GET /cwsd.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:00 +0600] "GET /tll.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:02 +0600] "GET /Okxob.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:03 +0600] "GET /idea.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:04 +0600] "GET /pepe.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:06 +0600] "GET /v2.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:07 +0600] "GET /yca.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:08 +0600] "GET /lock360.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:10 +0600] "GET /ot.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:11 +0600] "GET /bolt.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:12 +0600] "GET /j.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:13 +0600] "GET /s.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:15 +0600] "GET /ucp.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:16 +0600] "GET /zse.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:17 +0600] "GET /0x.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:18 +0600] "GET /403.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:20 +0600] "GET /gfile.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:21 +0600] "GET /doc.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:22 +0600] "GET /orm.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:24 +0600] "GET /ay.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:25 +0600] "GET /buy.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:26 +0600] "GET /test.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:28 +0600] "GET /wsa.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:29 +0600] "GET /wolv.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:30 +0600] "GET /ea3f.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:31 +0600] "GET /price.php HTTP/1.1" 200 39559 "-" "-" 13.74.149.244 - - [23/Dec/2025:02:21:33 +0600] "GET /gmo.php HTTP/1.1" 200 39559 "-" "-" 4.230.34.85 - - [23/Dec/2025:02:51:26 +0600] "GET / HTTP/1.1" 200 39559 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 4.230.34.85 - - [23/Dec/2025:02:51:27 +0600] "POST /wp-plain.php HTTP/1.1" 200 39559 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 4.230.34.85 - - [23/Dec/2025:02:51:27 +0600] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 200 39559 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 4.230.34.85 - - [23/Dec/2025:02:51:28 +0600] "GET /qifjuuci.php?Fox=d3wL7 HTTP/1.1" 200 39559 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 4.230.34.85 - - [23/Dec/2025:02:51:28 +0600] "POST /alfacgiapi/perl.alfa HTTP/1.1" 200 39559 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 4.230.34.85 - - [23/Dec/2025:02:51:27 +0600] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 403 1242 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 43.165.189.206 - - [23/Dec/2025:02:54:29 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 178.128.31.189 - - [23/Dec/2025:03:04:57 +0600] "GET /old/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:05:02 +0600] "GET /web/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:04:58 +0600] "GET /wordpress/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:04:55 +0600] "GET /wp/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:04:56 +0600] "GET /new/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:05:05 +0600] "GET /oldsite/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:04:54 +0600] "GET /wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:05:03 +0600] "GET /backup/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:04:59 +0600] "GET /test/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:05:00 +0600] "GET /blog/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:05:01 +0600] "GET /cms/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 178.128.31.189 - - [23/Dec/2025:03:05:04 +0600] "GET /site/wp-admin/install.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:09:51 +0600] "GET /?author=1 HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:09:59 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:11 +0600] "GET /admin HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:01 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:17 +0600] "GET /wp-login.php/ HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:09:57 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:19 +0600] "GET /admin/ HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:34 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:35 +0600] "GET /admin HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:27 +0600] "GET /administrator HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:09:49 +0600] "GET /wp-json/wp/v2/users HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:09 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 45.3.55.124 - - [23/Dec/2025:03:10:25 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 103.88.155.32 - - [23/Dec/2025:04:22:24 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "-" "python-requests/2.32.3" 62.164.177.240 - - [23/Dec/2025:04:14:19 +0600] "POST /xmlrpc.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15" 204.10.194.153 - - [23/Dec/2025:04:15:07 +0600] "GET /wp-login.php HTTP/1.1" 200 14610 "-" "python-requests/2.27.1" 43.130.12.43 - - [23/Dec/2025:04:40:14 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 62.164.177.240 - - [23/Dec/2025:05:06:05 +0600] "POST /xmlrpc.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" 40.83.96.65 - - [23/Dec/2025:07:27:48 +0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:49 +0600] "GET /class-t.api.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:50 +0600] "GET /zwso.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:51 +0600] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:51 +0600] "GET /class19.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:53 +0600] "GET /class20.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:54 +0600] "GET /admin.php?p= HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:55 +0600] "GET /randkeyword.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:56 +0600] "GET /fwe.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:57 +0600] "GET /images/m.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:27:59 +0600] "GET /g.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:00 +0600] "GET /tx1.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:01 +0600] "GET /xv.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:02 +0600] "GET /x56.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:03 +0600] "GET /htaccess.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:04 +0600] "GET /readme.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:05 +0600] "GET /x50.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:06 +0600] "GET /fv.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:07 +0600] "GET /file.php? HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:08 +0600] "GET /lsd.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:09 +0600] "GET /as.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:10 +0600] "GET /wsd.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:11 +0600] "GET /gtc.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:12 +0600] "GET /atx.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:14 +0600] "GET /z60.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:15 +0600] "GET /403.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:16 +0600] "GET /m.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:17 +0600] "GET /themes.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:18 +0600] "GET /wp-admin/maint/about.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:20 +0600] "GET /wp-admin/network/wp-conflg.php?p= HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:21 +0600] "GET /click.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:23 +0600] "GET /install.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:24 +0600] "GET /lv.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:25 +0600] "GET /simple.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:26 +0600] "GET /css.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:27 +0600] "GET /cong.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:29 +0600] "GET /wp-includes/images/wp-login.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:29 +0600] "GET /cong.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:30 +0600] "GET /w.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:31 +0600] "GET /404.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:32 +0600] "GET /ioxi-o.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:33 +0600] "GET /0x.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:34 +0600] "GET /css.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:35 +0600] "GET /222.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:37 +0600] "GET /wp-content/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:49 +0600] "GET /admin.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:51 +0600] "GET /wp-admin/maint/maint.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:52 +0600] "GET /classwithtostring.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:53 +0600] "GET /abcd.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:54 +0600] "GET /autoload_classmap.php?p= HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:55 +0600] "GET /inputs.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:56 +0600] "GET /about.php HTTP/1.1" 200 349 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:56 +0600] "GET /alfa.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:57 +0600] "GET /themes/twentytwentytwo/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:58 +0600] "GET /wp-admin/js/wp-conflg.php?p= HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:28:59 +0600] "GET /wp-admin/wp-conflg.php?p= HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:01 +0600] "GET /wp-admin/css/wp-conflg.php?p= HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:01 +0600] "GET /manager.php?p= HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:02 +0600] "GET /item.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:03 +0600] "GET /plugins/Cache/footer.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:04 +0600] "GET /404.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:05 +0600] "GET /mail.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:06 +0600] "GET /wp-content/plugins/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:07 +0600] "GET /sx.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:08 +0600] "GET /wp-admin/maint/admin.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:09 +0600] "GET /alfa.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:12 +0600] "GET /1.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:14 +0600] "GET /byp.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:15 +0600] "GET /wp-trackback.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:16 +0600] "GET /.well-known/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:17 +0600] "GET /wp-admin/network/plugins.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:19 +0600] "GET /wp-admin/about.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:21 +0600] "GET /gmo.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:22 +0600] "GET /wp-includes/ID3/about.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:23 +0600] "GET /css/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:24 +0600] "GET /wp-includes/SimplePie/wp-login.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:24 +0600] "GET /wp-content/themes/about.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:24 +0600] "GET /filemanager/dialog.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:25 +0600] "GET /wp-admin/maint/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:26 +0600] "GET /wp-includes/customize/about.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:26 +0600] "GET /index/function.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:27 +0600] "GET /uploads/autoload_classmap.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:28 +0600] "GET /wp-includes/style-engine/about.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:28 +0600] "GET /ww1.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:29 +0600] "GET /about/function.php HTTP/1.1" 200 39559 "-" "-" 93.123.109.37 - - [23/Dec/2025:07:18:34 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:144.0) Gecko/20100101 Firefox/144.0" 40.83.96.65 - - [23/Dec/2025:07:29:31 +0600] "GET /admin/function.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:32 +0600] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:33 +0600] "GET /css/colors/blue/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:34 +0600] "GET /security.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:35 +0600] "GET /wp-admin/user/about.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:36 +0600] "GET /wp-admin/js/index.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:37 +0600] "GET /wp-content/upgrade/about.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:38 +0600] "GET /wp-includes/assets/index.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:39 +0600] "GET /wp-content/radio.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:40 +0600] "GET /wp-includes/fonts/index.php?p= HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:40 +0600] "GET /.well-known/admin.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:42 +0600] "GET /wp-content/admin.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:43 +0600] "GET /wp-content/plugins/admin.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:44 +0600] "GET /wp-content/themes/twentytwentytwo/index.php?p= HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:45 +0600] "GET /.well-known/log.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:46 +0600] "GET /class.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:47 +0600] "GET /bless5.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:48 +0600] "GET /wp-includes/js/codemirror/index.php HTTP/1.1" 404 1251 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:48 +0600] "GET /wp-includes/block-patterns/index.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:48 +0600] "GET /lock360.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:50 +0600] "GET /f35.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:52 +0600] "GET /ioxi-o1.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:53 +0600] "GET /juuuu.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:54 +0600] "GET /ha.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:55 +0600] "GET /gg.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:57 +0600] "GET /we2.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:58 +0600] "GET /04.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:29:59 +0600] "GET /333.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:00 +0600] "GET /520.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:01 +0600] "GET /ar.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:02 +0600] "GET /x.php HTTP/1.1" 200 39559 "-" "-" 93.123.109.37 - - [23/Dec/2025:07:18:34 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:144.0) Gecko/20100101 Firefox/144.0" 93.123.109.37 - - [23/Dec/2025:07:18:34 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:144.0) Gecko/20100101 Firefox/144.0" 52.178.223.71 - - [23/Dec/2025:07:44:16 +0600] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:17 +0600] "GET /class-t.api.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:19 +0600] "GET /zwso.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:20 +0600] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:20 +0600] "GET /class19.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:22 +0600] "GET /class20.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:23 +0600] "GET /admin.php?p= HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:24 +0600] "GET /randkeyword.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:26 +0600] "GET /fwe.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:27 +0600] "GET /images/m.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:28 +0600] "GET /g.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:30 +0600] "GET /tx1.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:31 +0600] "GET /xv.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:32 +0600] "GET /x56.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:33 +0600] "GET /htaccess.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:35 +0600] "GET /readme.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:36 +0600] "GET /x50.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:37 +0600] "GET /fv.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:39 +0600] "GET /file.php? HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:40 +0600] "GET /lsd.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:41 +0600] "GET /as.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:43 +0600] "GET /wsd.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:44 +0600] "GET /gtc.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:45 +0600] "GET /atx.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:46 +0600] "GET /z60.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:48 +0600] "GET /403.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:49 +0600] "GET /m.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:50 +0600] "GET /themes.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:51 +0600] "GET /wp-admin/maint/about.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:53 +0600] "GET /wp-admin/network/wp-conflg.php?p= HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:54 +0600] "GET /click.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:55 +0600] "GET /install.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:57 +0600] "GET /lv.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:58 +0600] "GET /simple.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:44:59 +0600] "GET /css.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:01 +0600] "GET /cong.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:02 +0600] "GET /wp-includes/images/wp-login.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:02 +0600] "GET /cong.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:03 +0600] "GET /w.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:05 +0600] "GET /404.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:06 +0600] "GET /ioxi-o.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:07 +0600] "GET /0x.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:09 +0600] "GET /css.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:10 +0600] "GET /222.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:11 +0600] "GET /wp-content/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:12 +0600] "GET /admin.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:14 +0600] "GET /wp-admin/maint/maint.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:15 +0600] "GET /classwithtostring.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:16 +0600] "GET /abcd.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:18 +0600] "GET /autoload_classmap.php?p= HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:19 +0600] "GET /inputs.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:20 +0600] "GET /about.php HTTP/1.1" 200 349 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:20 +0600] "GET /alfa.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:22 +0600] "GET /themes/twentytwentytwo/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:23 +0600] "GET /wp-admin/js/wp-conflg.php?p= HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:24 +0600] "GET /wp-admin/wp-conflg.php?p= HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:25 +0600] "GET /wp-admin/css/wp-conflg.php?p= HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:26 +0600] "GET /manager.php?p= HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:27 +0600] "GET /item.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:28 +0600] "GET /plugins/Cache/footer.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:30 +0600] "GET /404.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:31 +0600] "GET /mail.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:32 +0600] "GET /wp-content/plugins/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:33 +0600] "GET /sx.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:36 +0600] "GET /wp-admin/maint/admin.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:37 +0600] "GET /alfa.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:39 +0600] "GET /1.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:40 +0600] "GET /byp.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:41 +0600] "GET /wp-trackback.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:43 +0600] "GET /.well-known/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:44 +0600] "GET /wp-admin/network/plugins.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:45 +0600] "GET /wp-admin/about.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:46 +0600] "GET /gmo.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:48 +0600] "GET /wp-includes/ID3/about.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:48 +0600] "GET /css/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:49 +0600] "GET /wp-includes/SimplePie/wp-login.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:49 +0600] "GET /wp-content/themes/about.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:50 +0600] "GET /filemanager/dialog.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:51 +0600] "GET /wp-admin/maint/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:52 +0600] "GET /wp-includes/customize/about.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:52 +0600] "GET /index/function.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:54 +0600] "GET /uploads/autoload_classmap.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:55 +0600] "GET /wp-includes/style-engine/about.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:55 +0600] "GET /ww1.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:57 +0600] "GET /about/function.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:58 +0600] "GET /admin/function.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:45:59 +0600] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:00 +0600] "GET /css/colors/blue/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:02 +0600] "GET /security.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:03 +0600] "GET /wp-admin/user/about.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:04 +0600] "GET /wp-admin/js/index.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:05 +0600] "GET /wp-content/upgrade/about.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:07 +0600] "GET /wp-includes/assets/index.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:07 +0600] "GET /wp-content/radio.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:08 +0600] "GET /wp-includes/fonts/index.php?p= HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:08 +0600] "GET /.well-known/admin.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:10 +0600] "GET /wp-content/admin.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:11 +0600] "GET /wp-content/plugins/admin.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:12 +0600] "GET /wp-content/themes/twentytwentytwo/index.php?p= HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:13 +0600] "GET /.well-known/log.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:14 +0600] "GET /class.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:15 +0600] "GET /bless5.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:16 +0600] "GET /wp-includes/js/codemirror/index.php HTTP/1.1" 404 1251 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:17 +0600] "GET /wp-includes/block-patterns/index.php HTTP/1.1" 403 1242 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:17 +0600] "GET /lock360.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:18 +0600] "GET /f35.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:19 +0600] "GET /ioxi-o1.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:21 +0600] "GET /juuuu.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:22 +0600] "GET /ha.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:23 +0600] "GET /gg.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:25 +0600] "GET /we2.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:26 +0600] "GET /04.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:27 +0600] "GET /333.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:29 +0600] "GET /520.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:30 +0600] "GET /ar.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:31 +0600] "GET /x.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:32 +0600] "GET /xx.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:34 +0600] "GET /gifclass4.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:35 +0600] "GET /2clas.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:36 +0600] "GET /ave.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:37 +0600] "GET /wrt.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:39 +0600] "GET /bibil.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:40 +0600] "GET /radio.php HTTP/1.1" 200 349 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:40 +0600] "GET /files.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:41 +0600] "GET /file7.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:43 +0600] "GET /gifclass.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:44 +0600] "GET /wp-admin/css/colors/midnight/about.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:03 +0600] "GET /xx.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:04 +0600] "GET /gifclass4.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:05 +0600] "GET /2clas.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:06 +0600] "GET /ave.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:08 +0600] "GET /wrt.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:09 +0600] "GET /bibil.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:10 +0600] "GET /radio.php HTTP/1.1" 200 349 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:10 +0600] "GET /files.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:11 +0600] "GET /file7.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:12 +0600] "GET /gifclass.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:14 +0600] "GET /wp-admin/css/colors/midnight/about.php HTTP/1.1" 403 1242 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:15 +0600] "GET /nox.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:16 +0600] "GET /file48.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:17 +0600] "GET /info.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:18 +0600] "GET /class9.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:20 +0600] "GET /la.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:21 +0600] "GET /bless11.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:22 +0600] "GET /ccou.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:23 +0600] "GET /ton.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:24 +0600] "GET /403.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:25 +0600] "GET /file9.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:27 +0600] "GET /ac.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:28 +0600] "GET /new4.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:29 +0600] "GET /pop.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:30 +0600] "GET /az.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:32 +0600] "GET /xaz.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:33 +0600] "GET /up4.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:34 +0600] "GET /1aa.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:35 +0600] "GET /elp.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:36 +0600] "GET /wtz.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:37 +0600] "GET /galex.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:38 +0600] "GET /xb.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:39 +0600] "GET /ova.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:41 +0600] "GET /vx.php HTTP/1.1" 200 39559 "-" "-" 40.83.96.65 - - [23/Dec/2025:07:30:42 +0600] "GET /rh.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:44 +0600] "GET /nox.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:46 +0600] "GET /file48.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:47 +0600] "GET /info.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:48 +0600] "GET /class9.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:49 +0600] "GET /la.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:51 +0600] "GET /bless11.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:52 +0600] "GET /ccou.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:53 +0600] "GET /ton.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:55 +0600] "GET /403.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:56 +0600] "GET /file9.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:57 +0600] "GET /ac.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:46:58 +0600] "GET /new4.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:00 +0600] "GET /pop.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:01 +0600] "GET /az.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:02 +0600] "GET /xaz.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:04 +0600] "GET /up4.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:05 +0600] "GET /1aa.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:06 +0600] "GET /elp.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:07 +0600] "GET /wtz.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:09 +0600] "GET /galex.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:10 +0600] "GET /xb.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:11 +0600] "GET /ova.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:13 +0600] "GET /vx.php HTTP/1.1" 200 39559 "-" "-" 52.178.223.71 - - [23/Dec/2025:07:47:14 +0600] "GET /rh.php HTTP/1.1" 200 39559 "-" "-" 104.234.19.64 - - [23/Dec/2025:07:56:08 +0600] "POST /wp-login.php HTTP/1.1" 200 14610 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 104.234.19.64 - - [23/Dec/2025:07:56:09 +0600] "GET /wp-admin/ HTTP/1.1" 200 811 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 193.36.224.157 - - [23/Dec/2025:07:56:12 +0600] "POST /wp-login.php HTTP/1.1" 200 14610 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 193.36.224.157 - - [23/Dec/2025:07:56:14 +0600] "GET /wp-admin/ HTTP/1.1" 200 811 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 85.209.156.6 - - [23/Dec/2025:07:51:28 +0600] "POST /xmlrpc.php HTTP/1.1" 200 12984 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" 193.36.224.160 - - [23/Dec/2025:07:56:10 +0600] "POST /wp-login.php HTTP/1.1" 200 14610 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 193.36.224.160 - - [23/Dec/2025:07:56:12 +0600] "GET /wp-admin/ HTTP/1.1" 200 811 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 193.36.224.193 - - [23/Dec/2025:07:56:15 +0600] "POST /wp-login.php HTTP/1.1" 200 14610 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 193.36.224.193 - - [23/Dec/2025:07:56:16 +0600] "GET /wp-admin/ HTTP/1.1" 200 811 "http://tsgbd.com/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" 85.209.156.6 - - [23/Dec/2025:07:51:23 +0600] "POST /xmlrpc.php HTTP/1.1" 200 12984 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" 114.96.103.33 - - [23/Dec/2025:08:02:29 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 205.210.31.111 - - [23/Dec/2025:07:47:39 +0600] "GET / HTTP/1.1" 200 39559 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity" 54.161.33.231 - - [23/Dec/2025:08:17:45 +0600] "GET /robots.txt HTTP/1.1" 200 119 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 192.36.109.98 - - [23/Dec/2025:08:11:54 +0600] "GET /robots.txt HTTP/1.1" 200 119 "-" "Mozilla/5.0 (Linux; Android 14; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.280 Mobile Safari/537.36 OPR/80.4.4244.7786" 192.36.109.73 - - [23/Dec/2025:08:11:57 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Linux; Android 14; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.280 Mobile Safari/537.36 OPR/80.4.4244.7786" 62.164.177.252 - - [23/Dec/2025:09:15:37 +0600] "POST /xmlrpc.php HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15" 20.78.176.13 - - [23/Dec/2025:09:36:45 +0600] "GET /wp-good.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:36:46 +0600] "GET /ioxi-o.php HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:36:47 +0600] "GET /file.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:36:49 +0600] "GET /wp-admin/css/colors/blue HTTP/1.1" 403 1242 "https://www.yahoo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:36:50 +0600] "GET /wp-signin.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 20.78.176.13 - - [23/Dec/2025:09:36:51 +0600] "GET /abcd.php HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 12; V2134) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:36:55 +0600] "GET /wp-includes/block-bindings HTTP/1.1" 403 1242 "https://www.yahoo.com/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:36:55 +0600] "GET /about.php HTTP/1.1" 200 349 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:36:56 +0600] "GET /bless.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:36:57 +0600] "GET /images/install.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:36:58 +0600] "GET /num.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:36:59 +0600] "GET /txets.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:01 +0600] "GET /wp-blog.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:02 +0600] "GET /wp-content/admin-header.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:03 +0600] "GET /wp-content/themes/about.php HTTP/1.1" 403 1242 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:03 +0600] "GET /wp-includes/js/dist HTTP/1.1" 301 795 "https://www.google.de/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:03 +0600] "GET /wp-includes/js/dist/ HTTP/1.1" 200 1894 "https://www.google.de/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:03 +0600] "GET /wp-includes/rest-api/fields HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:04 +0600] "GET /wp.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:05 +0600] "GET /admin.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:06 +0600] "GET /adminfuns.php HTTP/1.1" 403 1242 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:06 +0600] "GET /chosen.php HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:08 +0600] "GET /classwithtostring.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 20.78.176.13 - - [23/Dec/2025:09:37:09 +0600] "GET /edit.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:10 +0600] "GET /goods.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:11 +0600] "GET /k.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:12 +0600] "GET /mah/function.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:13 +0600] "GET /wp-conflg/function.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:14 +0600] "GET /wp-content/admin.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:15 +0600] "GET /wp-content/languages/index.php HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:16 +0600] "GET /wp-includes/PHPMailer/index.php HTTP/1.1" 403 1242 "https://www.google.co.uk/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:17 +0600] "GET /wp-includes/images HTTP/1.1" 301 795 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:17 +0600] "GET /wp-includes/images/ HTTP/1.1" 200 2108 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:17 +0600] "GET /wp-includes/images/index.php HTTP/1.1" 404 1251 "https://www.bing.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:17 +0600] "GET /wp-includes/js/dist/development HTTP/1.1" 404 1251 "https://www.google.fr/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:17 +0600] "GET /wp-user.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:18 +0600] "GET /404.php HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:19 +0600] "GET /akcc.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:20 +0600] "GET /gg.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 20.78.176.13 - - [23/Dec/2025:09:37:22 +0600] "GET /mah.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:23 +0600] "GET /new.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:24 +0600] "GET /themes.php HTTP/1.1" 200 39559 "https://www.google.co.uk/" "Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:25 +0600] "GET /uploads/index.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:26 +0600] "GET /wp-admin HTTP/1.1" 301 795 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:26 +0600] "GET /wp-admin/ HTTP/1.1" 200 2232 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:26 +0600] "GET /wp-admin/classwithtostring.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:27 +0600] "GET /wp-admin/css HTTP/1.1" 301 795 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:28 +0600] "GET /wp-admin/css/ HTTP/1.1" 403 1242 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:28 +0600] "GET /wp-admin/css/about.php HTTP/1.1" 403 1242 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:28 +0600] "GET /wp-admin/includes/colour.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:29 +0600] "GET /wp-admin/js HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:30 +0600] "GET /wp-admin/js/autoload_classmap.php HTTP/1.1" 200 39559 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:31 +0600] "GET /wp-admin/js/widgets HTTP/1.1" 200 39559 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:32 +0600] "GET /wp-content/autoload_classmap.php HTTP/1.1" 200 39559 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:33 +0600] "GET /wp-content/backups-dup-lite HTTP/1.1" 200 39559 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:35 +0600] "GET /wp-content/languages HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:36 +0600] "GET /wp-content/plugins/admin.php HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:37 +0600] "GET /wp-content/themes/admin.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:37 +0600] "GET /wp-content/uploads HTTP/1.1" 200 39559 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:38 +0600] "GET /wp-content/uploads/2025 HTTP/1.1" 200 39559 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:39 +0600] "GET /wp-includes/IXR HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:39 +0600] "GET /wp-includes/IXR/index.php HTTP/1.1" 403 1242 "https://www.bing.com/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:39 +0600] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/Text HTTP/1.1" 403 1242 "https://www.yahoo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/Text/Diff/Engine HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/block-bindings/index.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/block-supports HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/blocks/code HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/customize/chosen.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/html-api/index.php HTTP/1.1" 403 1242 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 12; V2134) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:40 +0600] "GET /wp-includes/index.php HTTP/1.1" 404 1251 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:41 +0600] "GET /wp-includes/js/dist/development/index.php HTTP/1.1" 404 1251 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:41 +0600] "GET /wp-includes/pomo/index.php HTTP/1.1" 403 1242 "https://www.google.com/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:41 +0600] "GET /wp-includes/rest-api HTTP/1.1" 403 1242 "https://duckduckgo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1" 20.78.176.13 - - [23/Dec/2025:09:37:41 +0600] "GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36" 20.78.176.13 - - [23/Dec/2025:09:37:41 +0600] "GET /wp-includes/theme-compat HTTP/1.1" 403 1242 "https://www.google.de/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1" 184.154.76.44 - - [23/Dec/2025:09:42:18 +0600] "GET /_autoindex/assets/js/tablesort.number.js HTTP/1.1" 200 682 "http://www.google.com/url?url=www.tsgbd.com&yahoo.com" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/6.0)" 184.154.76.44 - - [23/Dec/2025:09:42:15 +0600] "GET /?ynzmini=/home/oishifashion/tsgbd.com HTTP/1.1" 200 39559 "http://www.google.com/url?url=www.tsgbd.com&yahoo.com" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/6.0)" 184.154.76.44 - - [23/Dec/2025:09:42:17 +0600] "GET /?C=S;O=A HTTP/1.1" 200 39559 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:20 +0600] "GET /wp-blog-header.php HTTP/1.1" 403 1242 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:20 +0600] "GET /_autoindex/assets/css/autoindex.css HTTP/1.1" 200 3562 "http://www.google.com/url?url=www.tsgbd.com&yahoo.com" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/6.0)" 184.154.76.44 - - [23/Dec/2025:09:42:28 +0600] "GET /?SA HTTP/1.1" 200 39559 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:10 +0600] "GET / HTTP/1.1" 200 39559 "http://www.google.com/url?url=www.tsgbd.com&yahoo.com" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/6.0)" 184.154.76.44 - - [23/Dec/2025:09:42:13 +0600] "GET /th1s_1s_a_4o4.html HTTP/1.1" 200 39559 "http://www.google.com/url?url=www.tsgbd.com&yahoo.com" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/6.0)" 184.154.76.44 - - [23/Dec/2025:09:42:24 +0600] "GET /?ND HTTP/1.1" 200 39559 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:21 +0600] "GET /_autoindex/assets/js/tablesort.js HTTP/1.1" 200 7706 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:27 +0600] "GET /?SD HTTP/1.1" 200 39559 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:17 +0600] "GET /wp-cron.php HTTP/1.1" 403 1242 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:26 +0600] "GET /?NA HTTP/1.1" 200 39559 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 184.154.76.44 - - [23/Dec/2025:09:42:22 +0600] "GET /?file=/etc/passwd HTTP/1.1" 200 39559 "http://www.google.com/url?url=www.tsgbd.com&yahoo.com" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/6.0)" 184.154.76.44 - - [23/Dec/2025:09:42:25 +0600] "GET /?MA HTTP/1.1" 200 39559 "-" "SiteLockSpider [en] (WinNT; I ;Nav)" 43.130.116.87 - - [23/Dec/2025:10:04:00 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 78.153.140.218 - - [23/Dec/2025:10:27:28 +0600] "GET /.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.66 Safari/535.11" 78.153.140.218 - - [23/Dec/2025:10:27:44 +0600] "GET /api/.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (X11; Linux i686; U) Opera 7.50 [en]" 78.153.140.218 - - [23/Dec/2025:10:28:01 +0600] "GET /laravel/.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (X11; U; Linux armv7l; en-US) AppleWebKit/534.16 (KHTML, like Gecko) Chrome/10.0.648.204 Safari/534.16" 185.39.19.43 - - [23/Dec/2025:10:23:13 +0600] "GET / HTTP/1.0" 200 39559 "http://tsgbd.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Avast/131.0.0.0" 78.153.140.218 - - [23/Dec/2025:10:27:50 +0600] "GET /dev/.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Linux; Android 4.4.2; en-us; SAMSUNG-SGH-I537 Build/KOT49H) AppleWebKit/537.36 (KHTML, like Gecko) Version/1.5 Chrome/28.0.1500.94 Mobile Safari/537.36" 78.153.140.218 - - [23/Dec/2025:10:27:33 +0600] "GET / HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Linux; Android 7.1.1; Z851M Build/NMF26V) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.83 Mobile Safari/537.36" 78.153.140.218 - - [23/Dec/2025:10:27:36 +0600] "GET /sendgrid.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.186 Safari/537.36" 78.153.140.218 - - [23/Dec/2025:10:28:03 +0600] "GET /.config.yaml HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Android 6.0.1; Mobile; rv:48.0) Gecko/48.0 Firefox/48.0" 78.153.140.218 - - [23/Dec/2025:10:27:56 +0600] "GET /admin/.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Linux; Android 7.1.1; Moto E (4) Build/NCQ26.69-46) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Mobile Safari/537.36" 78.153.140.218 - - [23/Dec/2025:10:28:06 +0600] "GET /backend/.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (X11; U; Linux i686; sk; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7" 78.153.140.218 - - [23/Dec/2025:10:27:54 +0600] "GET /app_dev.php/_profiler/phpinfo HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; EIE10;ENUSWOL; rv:11.0) like Gecko" 78.153.140.218 - - [23/Dec/2025:10:28:11 +0600] "GET /.env.example HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20100101 Firefox/17.0" 78.153.140.218 - - [23/Dec/2025:10:28:13 +0600] "GET /web/.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3" 78.153.140.218 - - [23/Dec/2025:10:27:46 +0600] "GET /phpinfo/ HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_0) AppleWebKit/601.6.17 (KHTML, like Gecko) Version/9.1.1 Safari/601.6.17" 78.153.140.218 - - [23/Dec/2025:10:27:40 +0600] "GET /twilio.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SM-J200G Build/LMY47X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.84 Mobile Safari/537.36" 78.153.140.218 - - [23/Dec/2025:10:28:09 +0600] "GET /secrets.env HTTP/1.1" 200 39559 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.47 Safari/537.36" 93.158.90.67 - - [23/Dec/2025:10:29:01 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Agency/93.8.2357.5" 54.82.81.182 - - [23/Dec/2025:11:13:07 +0600] "GET /robots.txt HTTP/1.1" 200 119 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 34.227.195.25 - - [23/Dec/2025:11:26:53 +0600] "GET /robots.txt HTTP/1.1" 200 119 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 141.98.11.182 - - [23/Dec/2025:11:47:30 +0600] "GET /wp-login.php HTTP/1.1" 200 14617 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.5195.53 Safari/537.36" 43.153.47.201 - - [23/Dec/2025:11:59:36 +0600] "GET / HTTP/1.1" 200 14610 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 194.76.146.10 - - [23/Dec/2025:12:21:00 +0600] "POST /xmlrpc.php HTTP/1.1" 200 12984 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"