pastebin - collaborative debugging

pastebin is a collaborative debugging tool allowing you to share and modify code snippets while chatting on IRC, IM or a message board.

This site is developed to XHTML and CSS2 W3C standards. If you see this paragraph, your browser does not support those standards and you need to upgrade. Visit WaSP for a variety of options.

jpowermacg4 - paste collaborative debugging tool

Posted by jpowermacg4 on Fri 19th Apr 11:40 (modification of post by view diff)
view | download | new post

  1. I tried to make a script to catch suspicious stuff.
  2.  
  3. I noticed these in the logs.
  4.  
  5. ```
  6. 2024-04-19 13:56:12 - 172.71.174.167 - GET /wp-content/plugins/hellopress/wp_filemanager.php
  7. 2024-04-19 13:56:12 - 172.71.174.167 - GET /wp-admin/images/atomlib.php
  8. 2024-04-19 13:56:12 - 172.71.174.167 - GET /wp-admin/maint/edit.php
  9. 2024-04-19 13:56:12 - 172.71.174.167 - GET /mini.php
  10. 2024-04-19 13:56:12 - 172.71.174.167 - GET /simple.php
  11. 2024-04-19 13:56:12 - 172.71.174.167 - GET /choosen.php
  12. 2024-04-19 13:56:12 - 172.71.174.167 - GET /chosen.php?p=
  13. 2024-04-19 13:56:12 - 172.71.174.167 - GET /wp-content/uploads/option.php
  14. 2024-04-19 13:56:12 - 172.71.174.167 - GET /wp-includes/PHPMailer/admin.php
  15. 2024-04-19 13:56:13 - 172.71.174.167 - GET /wp-admin/user/about.php
  16. 2024-04-19 13:56:13 - 172.71.174.167 - GET /wp-includes/customize/amaxx.php
  17. 2024-04-19 13:56:13 - 172.71.174.167 - GET /wp-content/uploads/about.php
  18. 2024-04-19 13:56:13 - 172.71.174.167 - GET /filefuns.php
  19. 2024-04-19 13:56:13 - 172.71.174.167 - GET /wp-content/plugins/background-image-cropper/tmpls.php
  20. 2024-04-19 13:56:13 - 172.71.174.167 - GET /wp-admin/images/profile.php
  21. 2024-04-19 13:56:13 - 172.71.174.167 - GET /wp-content/plugins/revslider/includes/external/page/index.php
  22. 2024-04-19 13:56:13 - 172.71.174.167 - GET /wp-configs.php
  23. 2024-04-19 13:56:13 - 172.71.174.167 - GET /post.php
  24. 2024-04-19 13:56:13 - 172.71.174.167 - GET /assets/app.php
  25. 2024-04-19 13:56:13 - 172.71.174.167 - GET /gecko.php
  26. 2024-04-19 13:56:14 - 172.71.174.167 - GET /web.php
  27. 2024-04-19 13:56:14 - 172.71.174.167 - GET /wp-includes/IXR/admin.php
  28. 2024-04-19 13:56:14 - 172.71.174.167 - GET /wp-admin/css/colors/blue/blue.php
  29. 2024-04-19 13:56:14 - 172.71.174.167 - GET /wp-activate.php
  30. 2024-04-19 13:56:14 - 172.71.174.167 - GET /wp-l0gin.php
  31. 2024-04-19 13:56:14 - 172.71.174.167 - GET /worksec.php
  32. 2024-04-19 13:56:14 - 172.71.174.167 - GET /inputs.php
  33. 2024-04-19 13:56:15 - 172.71.174.167 - GET /byp.php
  34. 2024-04-19 13:56:15 - 172.71.174.167 - GET /xmlrpc.php
  35. 2024-04-19 13:56:15 - 172.71.174.167 - GET /wp-links.php
  36. 2024-04-19 13:56:15 - 172.71.174.167 - GET /input.php?p=
  37. 2024-04-19 13:56:16 - 172.71.174.167 - GET /wp-content/plugins/apikey/mar.php
  38. 2024-04-19 13:56:16 - 172.71.174.167 - GET /wp-content/uploads/wp-booter.php
  39. 2024-04-19 13:56:16 - 172.71.174.167 - GET /wp-admin/css/colors/light/about.php
  40. 2024-04-19 13:56:16 - 172.71.174.167 - GET /cong.php?p=
  41. 2024-04-19 13:56:16 - 172.71.174.167 - GET /wp-admin/css/colors/midnight/admin.php
  42. 2024-04-19 13:56:16 - 172.71.174.167 - GET /wp-includes/class-controller-theme-comment.php
  43. 2024-04-19 13:56:16 - 172.71.174.167 - GET /x.php?p=
  44. 2024-04-19 13:56:17 - 172.71.174.167 - GET /wp-includes/fonts/log404.php
  45. 2024-04-19 13:56:17 - 172.71.174.167 - GET /radio.php
  46. 2024-04-19 13:56:17 - 172.71.174.167 - GET /style.php
  47. 2024-04-19 13:56:17 - 172.71.174.167 - GET /test.php
  48. 2024-04-19 13:56:17 - 172.71.174.167 - GET /wp-admin/css/colors/blue/index.php
  49. 2024-04-19 13:56:17 - 172.71.174.167 - GET /wp-admin/network/index.php
  50. 2024-04-19 13:56:17 - 172.71.174.167 - GET /wp-includes/images/smilies/about.php
  51. 2024-04-19 13:56:17 - 172.71.174.167 - GET /sidwso.php
  52. 2024-04-19 13:56:17 - 172.71.174.167 - GET /wp-includes/Text/Diff/Renderer/install.php
  53. 2024-04-19 13:56:18 - 172.71.174.167 - GET /wp-content/about.php
  54. 2024-04-19 13:56:18 - 172.71.174.167 - GET /wp-includes/Text/about.php
  55. 2024-04-19 13:56:18 - 172.71.174.167 - GET /wp-includes/ID3/about.php
  56. 2024-04-19 13:56:18 - 172.71.174.167 - GET /wp-includes/customize/about.php
  57. 2024-04-19 13:56:18 - 172.71.174.167 - GET /wp-includes/widgets/about.php
  58. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-includes/block-patterns/about.php
  59. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-content/upgrade-temp-backup/about.php
  60. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-admin/includes/about.php
  61. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-content/blogs.dir/about.php
  62. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-includes/about.php
  63. 2024-04-19 13:56:19 - 172.71.174.167 - GET /cgi-bin/about.php
  64. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-content/gallery/about.php
  65. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-includes/blocks/about.php
  66. 2024-04-19 13:56:19 - 172.71.174.167 - GET /wp-admin/images/about.php
  67. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-admin/network/cloud.php
  68. 2024-04-19 13:56:20 - 172.71.174.167 - GET /cgi-bin/cloud.php
  69. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-content/updates.php
  70. 2024-04-19 13:56:20 - 172.71.174.167 - GET /css/cloud.php
  71. 2024-04-19 13:56:20 - 172.71.174.167 - GET /img/cloud.php
  72. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-admin/css/colors/coffee/cloud.php
  73. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-admin/images/cloud.php
  74. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-admin/js/widgets/cloud.php
  75. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-admin/includes/cloud.php
  76. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-admin/css/colors/blue/cloud.php
  77. 2024-04-19 13:56:20 - 172.71.174.167 - GET /wp-admin/cloud.php
  78. 2024-04-19 13:56:21 - 172.71.174.167 - GET /updates.php
  79. 2024-04-19 13:56:21 - 172.71.174.167 - GET /libraries/legacy/updates.php
  80. 2024-04-19 13:56:21 - 172.71.174.167 - GET /libraries/vendor/updates.php
  81. 2024-04-19 13:56:21 - 172.71.174.167 - GET /alfa-rex.php7
  82. 2024-04-19 13:56:21 - 172.71.174.167 - GET /alfanew.php
  83. 2024-04-19 13:56:21 - 172.71.174.167 - GET /wp-admin/js/widgets/about.php7
  84. 2024-04-19 13:56:21 - 172.71.174.167 - GET /wp-p.php7
  85. 2024-04-19 13:56:21 - 172.71.174.167 - GET /wp-includes/repeater.php
  86. 2024-04-19 13:56:21 - 172.71.174.167 - GET /wsoyanz.php
  87. 2024-04-19 13:56:21 - 172.71.174.167 - GET /wp-content/plugins/seoo/wsoyanz.php
  88. 2024-04-19 13:56:21 - 172.71.174.167 - GET /cache-compat.php
  89. 2024-04-19 13:56:22 - 172.71.174.167 - GET /wp-admin/ajax-actions.php
  90. 2024-04-19 13:56:22 - 172.71.174.167 - GET /admin-post.php
  91. 2024-04-19 13:56:22 - 172.71.174.167 - GET /wp-admin/dropdown.php
  92. 2024-04-19 13:56:22 - 172.71.174.167 - GET /wp-admin/css/index.php
  93. 2024-04-19 13:56:22 - 172.71.174.167 - GET /dropdown.php
  94. 2024-04-19 13:56:22 - 172.71.174.167 - GET /about.php
  95. 2024-04-19 13:56:22 - 172.71.174.167 - GET /ebs.php7
  96. 2024-04-19 13:56:22 - 172.71.174.167 - GET /ws.php7
  97. 2024-04-19 13:56:22 - 172.71.174.167 - GET /alfanew2.php7
  98. 2024-04-19 13:56:23 - 172.71.174.167 - GET /wp-content/themes/pridmag/db.php?u
  99. 2024-04-19 13:56:23 - 172.71.174.167 - GET /wp-content/plugins/linkpreview/db.php?u
  100. 2024-04-19 13:56:23 - 172.71.174.167 - GET /wp-content/plugins/seoplugins/db.php?u
  101. 2024-04-19 13:56:23 - 172.71.174.167 - GET /wp-content/plugins/seoplugins/mar.php
  102. 2024-04-19 13:56:23 - 172.71.174.167 - GET /.well-known/pki-validation/xmrlpc.php?p=
  103. 2024-04-19 13:56:23 - 172.71.174.167 - GET /cgi-bin/xmrlpc.php?p=
  104. 2024-04-19 13:56:23 - 172.71.174.167 - GET /wp-admin/user/xmrlpc.php?p=
  105. 2024-04-19 13:56:23 - 172.71.174.167 - GET /img/xmrlpc.php?p=
  106. 2024-04-19 13:56:23 - 172.71.174.167 - GET /wp-admin/css/colors/coffee/xmrlpc.php?p=
  107. 2024-04-19 13:56:23 - 172.71.174.167 - GET /images/xmrlpc.php?p=
  108. 2024-04-19 13:56:23 - 172.71.174.167 - GET /wp-admin/js/widgets/xmrlpc.php?p=
  109. 2024-04-19 13:56:24 - 172.71.174.167 - GET /wp-admin/css/colors/xmrlpc.php?p=
  110. 2024-04-19 13:56:24 - 172.71.174.167 - GET /edit.php
  111. 2024-04-19 13:56:24 - 172.71.174.167 - GET /lang.php
  112. 2024-04-19 13:56:24 - 172.71.174.167 - GET /wp-admin/maint/edit.php
  113. 2024-04-19 13:56:25 - 172.71.174.167 - GET /choosen.php
  114. 2024-04-19 13:56:25 - 172.71.174.167 - GET /wp-content/uploads/option.php
  115. 2024-04-19 13:56:25 - 172.71.174.167 - GET /wp-content/plugins/background-image-cropper/tmpls.php
  116. 2024-04-19 13:56:25 - 172.71.174.167 - GET /wp-configs.php
  117. 2024-04-19 13:56:25 - 172.71.174.167 - GET /wp-content/themes/alera/alpha.php
  118. 2024-04-19 13:56:25 - 172.71.174.167 - GET /post.php
  119. 2024-04-19 13:56:26 - 172.71.174.167 - GET /r3x.php
  120. 2024-04-19 13:56:26 - 172.71.174.167 - GET /wp-includes/certificates/about.php
  121. 2024-04-19 13:56:26 - 172.71.174.167 - GET /wp-includes/qw.php
  122. 2024-04-19 13:56:26 - 172.71.174.167 - GET /function.php
  123. 2024-04-19 13:56:26 - 172.71.174.167 - GET /wp-includes/IXR/admin.php
  124. 2024-04-19 13:56:26 - 172.71.174.167 - GET /wp-includes/IXR/allez.php
  125. 2024-04-19 13:56:26 - 172.71.174.167 - GET /wp-admin/css/colors/blue/blue.php
  126. 2024-04-19 13:56:26 - 172.71.174.167 - GET /wp-activate.php
  127. 2024-04-19 13:56:27 - 172.71.174.167 - GET /inputs.php
  128. 2024-04-19 13:56:27 - 172.71.174.167 - GET /wp-content/plugins/instabuilder2/cache/plugins/moon.php
  129. 2024-04-19 13:56:27 - 172.71.174.167 - GET /byp.php
  130. 2024-04-19 13:56:27 - 172.71.174.167 - GET /wp/wp-includes/menu.php
  131. 2024-04-19 13:56:27 - 172.71.174.167 - GET /css.php
  132. 2024-04-19 13:56:27 - 172.71.174.167 - GET /wp-links.php
  133. 2024-04-19 13:56:27 - 172.71.174.167 - GET /input.php?p=
  134. 2024-04-19 13:56:27 - 172.71.174.167 - GET /gawean.PhP7
  135. 2024-04-19 13:56:28 - 172.71.174.167 - GET /.tmb/admin.php
  136. 2024-04-19 13:56:28 - 172.71.174.167 - GET /wp-content/plugins/apikey/mar.php
  137. 2024-04-19 13:56:28 - 172.71.174.167 - GET /.well-known/zxhfwqyt.php
  138. 2024-04-19 13:56:28 - 172.71.174.167 - GET /wp-2019.php
  139. 2024-04-19 13:56:28 - 172.71.174.167 - GET /wp-content/uploads/wp-booter.php
  140. 2024-04-19 13:56:28 - 172.71.174.167 - GET /cong.php?p=
  141. 2024-04-19 13:56:28 - 172.71.174.167 - GET /.well-known/pki-validation/a.php
  142. 2024-04-19 13:56:29 - 172.71.174.167 - GET /ws.php
  143. 2024-04-19 13:56:29 - 172.71.174.167 - GET /radio.php
  144. 2024-04-19 13:56:29 - 172.71.174.167 - GET /fw.php
  145. 2024-04-19 13:56:29 - 172.71.174.167 - GET /wp-admin/css/colors/blue/index.php
  146. 2024-04-19 13:56:29 - 172.71.174.167 - GET /sx.php
  147. 2024-04-19 13:56:29 - 172.71.174.167 - GET /wp-includes/images/smilies/about.php
  148. 2024-04-19 13:56:30 - 172.71.174.167 - GET /sidwso.php
  149. 2024-04-19 13:56:30 - 172.71.174.167 - GET /jquery.php
  150. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-includes/Requests/about.php
  151. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-includes/rest-api/about.php
  152. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-includes/SimplePie/about.php
  153. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-content/about.php
  154. 2024-04-19 13:56:30 - 172.71.174.167 - GET /.well-known/about.php
  155. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-includes/ID3/about.php
  156. 2024-04-19 13:56:30 - 172.71.174.167 - GET /img/about.php
  157. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-includes/customize/about.php
  158. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-includes.bak/html-api/about.php
  159. 2024-04-19 13:56:30 - 172.71.174.167 - GET /wp-includes/widgets/about.php
  160. 2024-04-19 13:56:31 - 172.71.174.167 - GET /wp-content/themes/about.php
  161. 2024-04-19 13:56:31 - 172.71.174.167 - GET /wp-admin/includes/about.php
  162. 2024-04-19 13:56:31 - 172.71.174.167 - GET /images/about.php
  163. 2024-04-19 13:56:31 - 172.71.174.167 - GET /wp-includes/blocks/about.php
  164. 2024-04-19 13:56:31 - 172.71.174.167 - GET /wp-admin/css/about.php
  165. 2024-04-19 13:56:31 - 172.71.174.167 - GET /wp-admin/images/about.php
  166. 2024-04-19 13:56:32 - 172.71.174.167 - GET /cgi-bin/cloud.php
  167. 2024-04-19 13:56:32 - 172.71.174.167 - GET /wp-content/updates.php
  168. 2024-04-19 13:56:32 - 172.71.174.167 - GET /img/cloud.php
  169. 2024-04-19 13:56:32 - 172.71.174.167 - GET /wp-admin/css/colors/coffee/cloud.php
  170. 2024-04-19 13:56:32 - 172.71.174.167 - GET /wp-admin/images/cloud.php
  171. 2024-04-19 13:56:32 - 172.71.174.167 - GET /avaa.php
  172. 2024-04-19 13:56:32 - 172.71.174.167 - GET /images/cloud.php
  173. 2024-04-19 13:56:32 - 172.71.174.167 - GET /wp-admin/js/widgets/cloud.php
  174. 2024-04-19 13:56:32 - 172.71.174.167 - GET /wp-includes/Requests/Text/admin.php
  175. 2024-04-19 13:56:33 - 172.71.174.167 - GET /updates.php
  176. 2024-04-19 13:56:33 - 172.71.174.167 - GET /libraries/legacy/updates.php
  177. 2024-04-19 13:56:33 - 172.71.174.167 - GET /libraries/phpmailer/updates.php
  178. 2024-04-19 13:56:33 - 172.71.174.167 - GET /wp-p.php7
  179. 2024-04-19 13:56:33 - 172.71.174.167 - GET /wsoyanz.php
  180. 2024-04-19 13:56:33 - 172.71.174.167 - GET /yanz.php
  181. 2024-04-19 13:56:34 - 172.71.174.167 - GET /repeater.php
  182. 2024-04-19 13:56:34 - 172.71.174.167 - GET /wp-admin/dropdown.php
  183. 2024-04-19 13:56:34 - 172.71.174.167 - GET /wp-admin/css/index.php
  184. 2024-04-19 13:56:34 - 172.71.174.167 - GET /dropdown.php
  185. 2024-04-19 13:56:34 - 172.71.174.167 - GET /about.php
  186. 2024-04-19 13:56:34 - 172.71.174.167 - GET /about.php7
  187. 2024-04-19 13:56:34 - 172.71.174.167 - GET /alfanew.php7
  188. 2024-04-19 13:56:34 - 172.71.174.167 - GET /adminfuns.php7
  189. 2024-04-19 13:56:34 - 172.71.174.167 - GET /ebs.php7
  190. 2024-04-19 13:56:35 - 172.71.174.167 - GET /alfa-rex2.php7
  191. 2024-04-19 13:56:35 - 172.71.174.167 - GET /wp-admin/css/colors/index.php
  192. 2024-04-19 13:56:35 - 172.71.174.167 - GET /wp-content/themes/seotheme/mar.php
  193. 2024-04-19 13:56:35 - 172.71.174.167 - GET /wp-content/themes/seotheme/db.php?u
  194. 2024-04-19 13:56:35 - 172.71.174.167 - GET /wp-content/plugins/seoplugins/db.php?u
  195. 2024-04-19 13:56:35 - 172.71.174.167 - GET /wp-admin/network/xmrlpc.php?p=
  196. 2024-04-19 13:56:35 - 172.71.174.167 - GET /xmrlpc.php?p=
  197. 2024-04-19 13:56:35 - 172.71.174.167 - GET /wp-admin/user/xmrlpc.php?p=
  198. 2024-04-19 13:56:35 - 172.71.174.167 - GET /img/xmrlpc.php?p=
  199. 2024-04-19 13:56:35 - 172.71.174.167 - GET /wp-admin/css/colors/coffee/xmrlpc.php?p=
  200. 2024-04-19 13:56:36 - 172.71.174.167 - GET /images/xmrlpc.php?p=
  201. 2024-04-19 13:56:36 - 172.71.174.167 - GET /wp-admin/includes/xmrlpc.php?p=
  202. 2024-04-19 13:56:36 - 172.71.174.167 - GET /wp-admin/xmrlpc.php?p=
  203. 2024-04-19 13:56:36 - 172.71.174.167 - GET /file.php
  204. 2024-04-19 13:56:36 - 172.71.174.167 - GET /license.php
  205. 2024-04-19 13:56:36 - 172.71.174.167 - GET /uploader.php
  206. 2024-04-19 13:56:36 - 172.71.174.167 - GET /randkeyword.php
  207. 2024-04-19 13:56:36 - 172.71.174.167 - GET /lang.php
  208. [flingweb@vm4435 [~/public_html]]# cat attack-request.log | grep -i well-known | grep -v 172.71.174.167
  209. 2024-04-19 13:56:15 - 172.70.178.216 - GET /.well-known/index.php?p=
  210. 2024-04-19 13:56:16 - 172.70.178.216 - GET /.well-known/zxhfwqyt.php
  211. 2024-04-19 13:56:16 - 172.70.178.216 - GET /.well-known/pki-validation/a.php
  212. 2024-04-19 13:56:18 - 172.70.178.216 - GET /.well-known/about.php
  213. 2024-04-19 13:56:18 - 172.70.178.216 - GET /.well-known/pki-validation/about.php
  214. 2024-04-19 13:56:19 - 172.70.178.216 - GET /.well-known/pki-validation/cloud.php
  215. 2024-04-19 13:56:28 - 172.70.178.216 - GET /.well-known/index.php?p=
  216. 2024-04-19 13:56:31 - 172.70.178.216 - GET /.well-known/pki-validation/about.php
  217. 2024-04-19 13:56:32 - 172.70.178.216 - GET /.well-known/pki-validation/cloud.php
  218. 2024-04-19 13:56:35 - 172.70.178.216 - GET /.well-known/pki-validation/xmrlpc.php?p=
  219. [flingweb@vm4435 [~/public_html]]# cat attack-request.log | grep -i 172.70.178.216
  220. 2024-04-19 13:56:12 - 172.70.178.216 - GET /ioxi001.PhP7
  221. 2024-04-19 13:56:13 - 172.70.178.216 - GET /wp-content/themes/twentyfive/include.php
  222. 2024-04-19 13:56:13 - 172.70.178.216 - GET /wp-crons.php
  223. 2024-04-19 13:56:13 - 172.70.178.216 - GET /wp-content/themes/alera/alpha.php
  224. 2024-04-19 13:56:13 - 172.70.178.216 - GET /r3x.php
  225. 2024-04-19 13:56:13 - 172.70.178.216 - GET /shell20211028.php
  226. 2024-04-19 13:56:13 - 172.70.178.216 - GET /fm.php
  227. 2024-04-19 13:56:14 - 172.70.178.216 - GET /ern1.PhP7
  228. 2024-04-19 13:56:14 - 172.70.178.216 - GET /wp-admin/YP1cuvy6WrD.php
  229. 2024-04-19 13:56:14 - 172.70.178.216 - GET /wp-includes/certificates/about.php
  230. 2024-04-19 13:56:14 - 172.70.178.216 - GET /images/class-config.php
  231. 2024-04-19 13:56:14 - 172.70.178.216 - GET /defaults.php
  232. 2024-04-19 13:56:14 - 172.70.178.216 - GET /wp-includes/qw.php
  233. 2024-04-19 13:56:14 - 172.70.178.216 - GET /function.php
  234. 2024-04-19 13:56:14 - 172.70.178.216 - GET /wp-includes/IXR/allez.php
  235. 2024-04-19 13:56:14 - 172.70.178.216 - GET /comdofuns.php
  236. 2024-04-19 13:56:15 - 172.70.178.216 - GET /LA.php
  237. 2024-04-19 13:56:15 - 172.70.178.216 - GET /moon.php
  238. 2024-04-19 13:56:15 - 172.70.178.216 - GET /wp-content/plugins/instabuilder2/cache/plugins/moon.php
  239. 2024-04-19 13:56:15 - 172.70.178.216 - GET /mah.php?p=
  240. 2024-04-19 13:56:15 - 172.70.178.216 - GET /wp-includes/sitemaps/about.php
  241. 2024-04-19 13:56:15 - 172.70.178.216 - GET /indeex.php
  242. 2024-04-19 13:56:15 - 172.70.178.216 - GET /index1.php
  243. 2024-04-19 13:56:15 - 172.70.178.216 - GET /wp/wp-includes/menu.php
  244. 2024-04-19 13:56:15 - 172.70.178.216 - GET /css.php
  245. 2024-04-19 13:56:15 - 172.70.178.216 - GET /gawean.PhP7
  246. 2024-04-19 13:56:15 - 172.70.178.216 - GET /wp-admin/maint/moon.php
  247. 2024-04-19 13:56:15 - 172.70.178.216 - GET /wp-includes/widgets/class-wp-widget-tag.php
  248. 2024-04-19 13:56:15 - 172.70.178.216 - GET /.well-known/index.php?p=
  249. 2024-04-19 13:56:16 - 172.70.178.216 - GET /.tmb/admin.php
  250. 2024-04-19 13:56:16 - 172.70.178.216 - GET /1.php
  251. 2024-04-19 13:56:16 - 172.70.178.216 - GET /.well-known/zxhfwqyt.php
  252. 2024-04-19 13:56:16 - 172.70.178.216 - GET /moded.php
  253. 2024-04-19 13:56:16 - 172.70.178.216 - GET /autoload_classmap.php
  254. 2024-04-19 13:56:16 - 172.70.178.216 - GET /wp-2019.php
  255. 2024-04-19 13:56:16 - 172.70.178.216 - GET /assets/images/cmd.php
  256. 2024-04-19 13:56:16 - 172.70.178.216 - GET /doc.php
  257. 2024-04-19 13:56:16 - 172.70.178.216 - GET /wp-includes/pomo/wp-login.php
  258. 2024-04-19 13:56:16 - 172.70.178.216 - GET /.well-known/pki-validation/a.php
  259. 2024-04-19 13:56:16 - 172.70.178.216 - GET /assets/images/tinyimg.php
  260. 2024-04-19 13:56:16 - 172.70.178.216 - GET /ws.php
  261. 2024-04-19 13:56:17 - 172.70.178.216 - GET /wp-links-opml.php
  262. 2024-04-19 13:56:17 - 172.70.178.216 - GET /wp-file.php
  263. 2024-04-19 13:56:17 - 172.70.178.216 - GET /wp-includes/js/dist/vendor/vcard.php
  264. 2024-04-19 13:56:17 - 172.70.178.216 - GET /fw.php
  265. 2024-04-19 13:56:17 - 172.70.178.216 - GET /wp-includes/sx.php
  266. 2024-04-19 13:56:17 - 172.70.178.216 - GET /sx.php
  267. 2024-04-19 13:56:17 - 172.70.178.216 - GET /include/bussubmit.php
  268. 2024-04-19 13:56:17 - 172.70.178.216 - GET /jquery.php
  269. 2024-04-19 13:56:17 - 172.70.178.216 - GET /wp-includes/Requests/about.php
  270. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-includes/style-engine/about.php
  271. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-includes/rest-api/about.php
  272. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-includes/SimplePie/about.php
  273. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-content/banners/about.php
  274. 2024-04-19 13:56:18 - 172.70.178.216 - GET /.well-known/about.php
  275. 2024-04-19 13:56:18 - 172.70.178.216 - GET /img/about.php
  276. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-content/languages/about.php
  277. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-includes.bak/html-api/about.php
  278. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-includes/IXR/about.php
  279. 2024-04-19 13:56:18 - 172.70.178.216 - GET /wp-admin/js/about.php
  280. 2024-04-19 13:56:18 - 172.70.178.216 - GET /.well-known/pki-validation/about.php
  281. 2024-04-19 13:56:19 - 172.70.178.216 - GET /wp-includes/pomo/about.php
  282. 2024-04-19 13:56:19 - 172.70.178.216 - GET /wp-content/updraft/about.php
  283. 2024-04-19 13:56:19 - 172.70.178.216 - GET /wp-content/themes/about.php
  284. 2024-04-19 13:56:19 - 172.70.178.216 - GET /images/about.php
  285. 2024-04-19 13:56:19 - 172.70.178.216 - GET /wp-includes/images/about.php
  286. 2024-04-19 13:56:19 - 172.70.178.216 - GET /wp-admin/css/about.php
  287. 2024-04-19 13:56:19 - 172.70.178.216 - GET /.well-known/pki-validation/cloud.php
  288. 2024-04-19 13:56:20 - 172.70.178.216 - GET /cloud.php
  289. 2024-04-19 13:56:20 - 172.70.178.216 - GET /wp-admin/user/cloud.php
  290. 2024-04-19 13:56:20 - 172.70.178.216 - GET /avaa.php
  291. 2024-04-19 13:56:20 - 172.70.178.216 - GET /images/cloud.php
  292. 2024-04-19 13:56:20 - 172.70.178.216 - GET /wp-includes/Requests/Text/admin.php
  293. 2024-04-19 13:56:20 - 172.70.178.216 - GET /wp-admin/css/colors/cloud.php
  294. 2024-04-19 13:56:21 - 172.70.178.216 - GET /libraries/phpmailer/updates.php
  295. 2024-04-19 13:56:21 - 172.70.178.216 - GET /wp-content/plugins/Cache/Cache.php
  296. 2024-04-19 13:56:21 - 172.70.178.216 - GET /wp-admin/repeater.php
  297. 2024-04-19 13:56:21 - 172.70.178.216 - GET /wp-content/repeater.php
  298. 2024-04-19 13:56:21 - 172.70.178.216 - GET /yanz.php
  299. 2024-04-19 13:56:21 - 172.70.178.216 - GET /wp-content/plugins/seoo/wsoyanz1.php
  300. 2024-04-19 13:56:21 - 172.70.178.216 - GET /ajax-actions.php
  301. 2024-04-19 13:56:22 - 172.70.178.216 - GET /wp-consar.php
  302. 2024-04-19 13:56:22 - 172.70.178.216 - GET /repeater.php
  303. 2024-04-19 13:56:22 - 172.70.178.216 - GET /wp-admin/maint/maint/ajax-actions.php
  304. 2024-04-19 13:56:22 - 172.70.178.216 - GET /about.php7
  305. 2024-04-19 13:56:22 - 172.70.178.216 - GET /alfanew.php7
  306. 2024-04-19 13:56:22 - 172.70.178.216 - GET /adminfuns.php7
  307. 2024-04-19 13:56:22 - 172.70.178.216 - GET /alfa-rex2.php7
  308. 2024-04-19 13:56:23 - 172.70.178.216 - GET /wp-admin/images/index.php
  309. 2024-04-19 13:56:23 - 172.70.178.216 - GET /wp-admin/css/colors/index.php
  310. 2024-04-19 13:56:23 - 172.70.178.216 - GET /wp-content/themes/seotheme/mar.php
  311. 2024-04-19 13:56:23 - 172.70.178.216 - GET /wp-content/themes/seotheme/db.php?u
  312. 2024-04-19 13:56:23 - 172.70.178.216 - GET /wp-admin/network/xmrlpc.php?p=
  313. 2024-04-19 13:56:23 - 172.70.178.216 - GET /xmrlpc.php?p=
  314. 2024-04-19 13:56:23 - 172.70.178.216 - GET /css/xmrlpc.php?p=
  315. 2024-04-19 13:56:23 - 172.70.178.216 - GET /wp-admin/images/xmrlpc.php?p=
  316. 2024-04-19 13:56:24 - 172.70.178.216 - GET /wp-admin/includes/xmrlpc.php?p=
  317. 2024-04-19 13:56:24 - 172.70.178.216 - GET /wp-admin/css/colors/blue/xmrlpc.php?p=
  318. 2024-04-19 13:56:24 - 172.70.178.216 - GET /wp-admin/xmrlpc.php?p=
  319. 2024-04-19 13:56:24 - 172.70.178.216 - GET /crop.php
  320. 2024-04-19 13:56:24 - 172.70.178.216 - GET /file.php
  321. 2024-04-19 13:56:24 - 172.70.178.216 - GET /license.php
  322. 2024-04-19 13:56:24 - 172.70.178.216 - GET /uploader.php
  323. 2024-04-19 13:56:24 - 172.70.178.216 - GET /lock.php
  324. 2024-04-19 13:56:24 - 172.70.178.216 - GET /hauling-can.php
  325. 2024-04-19 13:56:24 - 172.70.178.216 - GET /randkeyword.php
  326. 2024-04-19 13:56:24 - 172.70.178.216 - GET /wp-admin/images/atomlib.php
  327. 2024-04-19 13:56:24 - 172.70.178.216 - GET /install.php?p=
  328. 2024-04-19 13:56:24 - 172.70.178.216 - GET /mini.php
  329. 2024-04-19 13:56:25 - 172.70.178.216 - GET /simple.php
  330. 2024-04-19 13:56:25 - 172.70.178.216 - GET /chosen.php?p=
  331. 2024-04-19 13:56:25 - 172.70.178.216 - GET /ioxi001.PhP7
  332. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-includes/PHPMailer/admin.php
  333. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-admin/user/about.php
  334. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-includes/customize/amaxx.php
  335. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-content/themes/twentyfive/include.php
  336. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-content/uploads/about.php
  337. 2024-04-19 13:56:25 - 172.70.178.216 - GET /filefuns.php
  338. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-crons.php
  339. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-admin/images/profile.php
  340. 2024-04-19 13:56:25 - 172.70.178.216 - GET /wp-content/plugins/revslider/includes/external/page/index.php
  341. 2024-04-19 13:56:26 - 172.70.178.216 - GET /assets/app.php
  342. 2024-04-19 13:56:26 - 172.70.178.216 - GET /shell20211028.php
  343. 2024-04-19 13:56:26 - 172.70.178.216 - GET /gecko.php
  344. 2024-04-19 13:56:26 - 172.70.178.216 - GET /fm.php
  345. 2024-04-19 13:56:26 - 172.70.178.216 - GET /ern1.PhP7
  346. 2024-04-19 13:56:26 - 172.70.178.216 - GET /wp-admin/YP1cuvy6WrD.php
  347. 2024-04-19 13:56:26 - 172.70.178.216 - GET /web.php
  348. 2024-04-19 13:56:26 - 172.70.178.216 - GET /images/class-config.php
  349. 2024-04-19 13:56:26 - 172.70.178.216 - GET /defaults.php
  350. 2024-04-19 13:56:27 - 172.70.178.216 - GET /wp-l0gin.php
  351. 2024-04-19 13:56:27 - 172.70.178.216 - GET /worksec.php
  352. 2024-04-19 13:56:27 - 172.70.178.216 - GET /comdofuns.php
  353. 2024-04-19 13:56:27 - 172.70.178.216 - GET /LA.php
  354. 2024-04-19 13:56:27 - 172.70.178.216 - GET /moon.php
  355. 2024-04-19 13:56:27 - 172.70.178.216 - GET /mah.php?p=
  356. 2024-04-19 13:56:27 - 172.70.178.216 - GET /wp-includes/sitemaps/about.php
  357. 2024-04-19 13:56:27 - 172.70.178.216 - GET /xmlrpc.php
  358. 2024-04-19 13:56:27 - 172.70.178.216 - GET /indeex.php
  359. 2024-04-19 13:56:27 - 172.70.178.216 - GET /index1.php
  360. 2024-04-19 13:56:28 - 172.70.178.216 - GET /wp-admin/maint/moon.php
  361. 2024-04-19 13:56:28 - 172.70.178.216 - GET /wp-includes/widgets/class-wp-widget-tag.php
  362. 2024-04-19 13:56:28 - 172.70.178.216 - GET /.well-known/index.php?p=
  363. 2024-04-19 13:56:28 - 172.70.178.216 - GET /1.php
  364. 2024-04-19 13:56:28 - 172.70.178.216 - GET /moded.php
  365. 2024-04-19 13:56:28 - 172.70.178.216 - GET /autoload_classmap.php
  366. 2024-04-19 13:56:28 - 172.70.178.216 - GET /assets/images/cmd.php
  367. 2024-04-19 13:56:28 - 172.70.178.216 - GET /doc.php
  368. 2024-04-19 13:56:28 - 172.70.178.216 - GET /wp-admin/css/colors/light/about.php
  369. 2024-04-19 13:56:28 - 172.70.178.216 - GET /wp-includes/pomo/wp-login.php
  370. 2024-04-19 13:56:29 - 172.70.178.216 - GET /assets/images/tinyimg.php
  371. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-admin/css/colors/midnight/admin.php
  372. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-includes/class-controller-theme-comment.php
  373. 2024-04-19 13:56:29 - 172.70.178.216 - GET /x.php?p=
  374. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-includes/fonts/log404.php
  375. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-links-opml.php
  376. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-file.php
  377. 2024-04-19 13:56:29 - 172.70.178.216 - GET /style.php
  378. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-includes/js/dist/vendor/vcard.php
  379. 2024-04-19 13:56:29 - 172.70.178.216 - GET /test.php
  380. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-includes/sx.php
  381. 2024-04-19 13:56:29 - 172.70.178.216 - GET /wp-admin/network/index.php
  382. 2024-04-19 13:56:30 - 172.70.178.216 - GET /include/bussubmit.php
  383. 2024-04-19 13:56:30 - 172.70.178.216 - GET /wp-includes/Text/Diff/Renderer/install.php
  384. 2024-04-19 13:56:30 - 172.70.178.216 - GET /wp-includes/style-engine/about.php
  385. 2024-04-19 13:56:30 - 172.70.178.216 - GET /wp-content/banners/about.php
  386. 2024-04-19 13:56:30 - 172.70.178.216 - GET /wp-includes/Text/about.php
  387. 2024-04-19 13:56:30 - 172.70.178.216 - GET /wp-content/languages/about.php
  388. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-includes/IXR/about.php
  389. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-admin/js/about.php
  390. 2024-04-19 13:56:31 - 172.70.178.216 - GET /.well-known/pki-validation/about.php
  391. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-includes/pomo/about.php
  392. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-includes/block-patterns/about.php
  393. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-content/updraft/about.php
  394. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-content/upgrade-temp-backup/about.php
  395. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-content/blogs.dir/about.php
  396. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-includes/images/about.php
  397. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-includes/about.php
  398. 2024-04-19 13:56:31 - 172.70.178.216 - GET /cgi-bin/about.php
  399. 2024-04-19 13:56:31 - 172.70.178.216 - GET /wp-content/gallery/about.php
  400. 2024-04-19 13:56:32 - 172.70.178.216 - GET /.well-known/pki-validation/cloud.php
  401. 2024-04-19 13:56:32 - 172.70.178.216 - GET /wp-admin/network/cloud.php
  402. 2024-04-19 13:56:32 - 172.70.178.216 - GET /cloud.php
  403. 2024-04-19 13:56:32 - 172.70.178.216 - GET /css/cloud.php
  404. 2024-04-19 13:56:32 - 172.70.178.216 - GET /wp-admin/user/cloud.php
  405. 2024-04-19 13:56:32 - 172.70.178.216 - GET /wp-admin/css/colors/cloud.php
  406. 2024-04-19 13:56:32 - 172.70.178.216 - GET /wp-admin/includes/cloud.php
  407. 2024-04-19 13:56:32 - 172.70.178.216 - GET /wp-admin/css/colors/blue/cloud.php
  408. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-admin/cloud.php
  409. 2024-04-19 13:56:33 - 172.70.178.216 - GET /libraries/vendor/updates.php
  410. 2024-04-19 13:56:33 - 172.70.178.216 - GET /alfa-rex.php7
  411. 2024-04-19 13:56:33 - 172.70.178.216 - GET /alfanew.php
  412. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-content/plugins/Cache/Cache.php
  413. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-admin/js/widgets/about.php7
  414. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-admin/repeater.php
  415. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-includes/repeater.php
  416. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-content/repeater.php
  417. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-content/plugins/seoo/wsoyanz.php
  418. 2024-04-19 13:56:33 - 172.70.178.216 - GET /wp-content/plugins/seoo/wsoyanz1.php
  419. 2024-04-19 13:56:34 - 172.70.178.216 - GET /cache-compat.php
  420. 2024-04-19 13:56:34 - 172.70.178.216 - GET /ajax-actions.php
  421. 2024-04-19 13:56:34 - 172.70.178.216 - GET /wp-admin/ajax-actions.php
  422. 2024-04-19 13:56:34 - 172.70.178.216 - GET /wp-consar.php
  423. 2024-04-19 13:56:34 - 172.70.178.216 - GET /admin-post.php
  424. 2024-04-19 13:56:34 - 172.70.178.216 - GET /wp-admin/maint/maint/ajax-actions.php
  425. 2024-04-19 13:56:34 - 172.70.178.216 - GET /ws.php7
  426. 2024-04-19 13:56:34 - 172.70.178.216 - GET /alfanew2.php7
  427. 2024-04-19 13:56:35 - 172.70.178.216 - GET /wp-admin/images/index.php
  428. 2024-04-19 13:56:35 - 172.70.178.216 - GET /wp-content/themes/pridmag/db.php?u
  429. 2024-04-19 13:56:35 - 172.70.178.216 - GET /wp-content/plugins/linkpreview/db.php?u
  430. 2024-04-19 13:56:35 - 172.70.178.216 - GET /wp-content/plugins/seoplugins/mar.php
  431. 2024-04-19 13:56:35 - 172.70.178.216 - GET /.well-known/pki-validation/xmrlpc.php?p=
  432. 2024-04-19 13:56:35 - 172.70.178.216 - GET /cgi-bin/xmrlpc.php?p=
  433. 2024-04-19 13:56:35 - 172.70.178.216 - GET /css/xmrlpc.php?p=
  434. 2024-04-19 13:56:35 - 172.70.178.216 - GET /wp-admin/images/xmrlpc.php?p=
  435. 2024-04-19 13:56:36 - 172.70.178.216 - GET /wp-admin/js/widgets/xmrlpc.php?p=
  436. 2024-04-19 13:56:36 - 172.70.178.216 - GET /wp-admin/css/colors/xmrlpc.php?p=
  437. 2024-04-19 13:56:36 - 172.70.178.216 - GET /wp-admin/css/colors/blue/xmrlpc.php?p=
  438. 2024-04-19 13:56:36 - 172.70.178.216 - GET /crop.php
  439. 2024-04-19 13:56:36 - 172.70.178.216 - GET /edit.php
  440. 2024-04-19 13:56:36 - 172.70.178.216 - GET /lock.php
  441. 2024-04-19 13:56:36 - 172.70.178.216 - GET /hauling-can.php
  442. ```

Submit a correction or amendment below (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.

Syntax highlighting:

To highlight particular lines, prefix each line with @@


Remember me