HEX
Server: Apache
System: Linux p3plmcpnl494318.prod.phx3.secureserver.net 4.18.0-553.54.1.lve.el8.x86_64 #1 SMP Wed Jun 4 13:01:13 UTC 2025 x86_64
User: halcosmu (4392252)
PHP: 8.4.18
Disabled: NONE
$ pwd: /home/halcosmu/access-logs/
Upload Files
File: /home/halcosmu/access-logs/approvedvaloan.halcommarketing.com
85.203.23.193 - - [16/Mar/2026:05:15:32 -0700] "GET /wp-includes/blocks/post-content/ HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 120 **0/120400**
85.203.23.193 - - [16/Mar/2026:05:22:27 -0700] "GET /wp-content/plugins/miniorange-malware-protection/handler/about.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 150 **0/150678**
85.203.23.193 - - [16/Mar/2026:05:24:14 -0700] "GET /wp-content/plugins/mtodm/ HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 125 **0/125537**
85.203.23.193 - - [16/Mar/2026:05:28:29 -0700] "GET /wp-admin/css/maintenance.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 100 **0/100852**
85.203.23.193 - - [16/Mar/2026:05:30:45 -0700] "GET /wp-includes/blocks/home-link/ HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 114 **0/114798**
85.203.23.193 - - [16/Mar/2026:05:31:18 -0700] "GET /wp-content/themes/astra/inc/builder/type/base/dynamic-css/button/ HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 107 **0/107007**
85.203.23.193 - - [16/Mar/2026:05:35:00 -0700] "GET /wp-includes/sodium_compat/namespaced/customize/ HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 106 **0/106616**
85.203.23.193 - - [16/Mar/2026:05:41:10 -0700] "GET /database.php HTTP/1.1" 403 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 187 **0/187713**
85.203.23.215 - - [16/Mar/2026:05:43:58 -0700] "GET /cgi-bin/cgi-bin/sql.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 103 **0/103128**
85.203.23.206 - - [16/Mar/2026:05:48:34 -0700] "GET /wp-includes/customize/autoload_classmap.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 101 **0/101461**
85.203.23.215 - - [16/Mar/2026:05:51:43 -0700] "GET /wp-content/plugins/shortcodes-ultimate/admin.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 100 **0/100533**
85.203.23.206 - - [16/Mar/2026:05:54:24 -0700] "GET /wp-includes/js/dist/vendor/about.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 111 **0/111343**
85.203.23.206 - - [16/Mar/2026:05:54:49 -0700] "GET /wp-includes/blocks/site-title-restful.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 110 **0/110281**
85.203.23.215 - - [16/Mar/2026:06:05:13 -0700] "GET /wp-content/plugins/revslider/temp/update_extract/revslider.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 106 **0/106384**
85.203.23.206 - - [16/Mar/2026:06:15:21 -0700] "GET /administrator/modules/mod_login/core.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 177 **0/177237**
85.203.23.206 - - [16/Mar/2026:06:17:41 -0700] "GET /catalog/view/theme/default/template/common/shell.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 101 **0/101648**
85.203.23.206 - - [16/Mar/2026:06:20:38 -0700] "GET /public/core.php HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" 104 **0/104040**
51.68.247.219 - - [16/Mar/2026:06:36:57 -0700] "GET /robots.txt HTTP/1.1" 200 80 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 4 **0/4499**
176.31.139.24 - - [16/Mar/2026:06:37:01 -0700] "GET / HTTP/1.1" 200 1 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" 101 **0/101587**
43.157.46.118 - - [16/Mar/2026:06:37:14 -0700] "GET / HTTP/1.1" 200 - "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" 113 **0/113309**
@ Telegram