HEX
Server: Apache
System: Linux andromeda.lojoweb.com 4.18.0-372.26.1.el8_6.x86_64 #1 SMP Tue Sep 13 06:07:14 EDT 2022 x86_64
User: nakedfoamlojoweb (1056)
PHP: 8.0.30
Disabled: exec,passthru,shell_exec,system
$ pwd: /home/nakedfoamlojoweb/access-logs/
Upload Files
File: /home/nakedfoamlojoweb/access-logs/nakedfoam.lojoweb.com
65.109.55.162 - - [03/Nov/2025:13:16:20 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68"
65.109.55.162 - - [03/Nov/2025:13:16:22 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68"
65.109.55.162 - - [03/Nov/2025:13:16:23 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68"
65.109.55.162 - - [03/Nov/2025:13:16:24 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68"
182.2.166.43 - - [03/Nov/2025:15:24:25 +0000] "GET /wp-content/plugins/init-help/init.php HTTP/1.1" 200 51945 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Build/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Mobile Safari/537.36"
74.7.230.16 - - [03/Nov/2025:16:33:13 +0000] "GET /robots.txt HTTP/1.1" 200 3399 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.0; robots.txt; +https://openai.com/searchbot"
45.148.10.165 - - [03/Nov/2025:19:40:06 +0000] "GET / HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36"
45.239.206.110 - - [03/Nov/2025:22:34:32 +0000] "GET / HTTP/1.1" 200 3399 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
189.45.164.181 - - [03/Nov/2025:22:34:39 +0000] "GET /wp-login.php HTTP/1.1" 200 3399 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
189.45.164.181 - - [03/Nov/2025:22:34:42 +0000] "POST /wp-login.php HTTP/1.1" 200 3399 "http://nakedfoam.lojoweb.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
112.205.55.145 - - [03/Nov/2025:22:34:53 +0000] "POST /wp-login.php HTTP/1.1" 200 3399 "http://nakedfoam.lojoweb.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
14.187.189.153 - - [03/Nov/2025:22:35:02 +0000] "POST /wp-login.php HTTP/1.1" 200 3399 "http://nakedfoam.lojoweb.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
14.187.189.153 - - [03/Nov/2025:22:35:03 +0000] "POST /xmlrpc.php HTTP/1.1" 200 3399 "-" "WordPress/5.0; http://nakedfoam.lojoweb.com"
82.118.30.91 - - [04/Nov/2025:00:23:15 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
82.118.30.91 - - [04/Nov/2025:00:23:16 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
82.118.30.91 - - [04/Nov/2025:00:23:17 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
82.118.30.91 - - [04/Nov/2025:00:23:18 +0000] "POST /xmlrpc.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
34.255.118.223 - - [04/Nov/2025:02:03:17 +0000] "GET / HTTP/1.0" 200 51945 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /shell.php HTTP/1.1" 403 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /wso.php HTTP/1.1" 403 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /xleet.php HTTP/1.1" 403 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /admin.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /admin-header.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /profile.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /options-reading.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
89.76.5.13 - - [04/Nov/2025:04:56:55 +0000] "GET /xleet-shell.php HTTP/1.1" 403 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36"
222.252.27.209 - - [04/Nov/2025:06:16:22 +0000] "POST /wp-admin/admin-ajax.php HTTP/1.1" 200 170196 "http://nakedfoam.lojoweb.com/" "mozilla/5.0 (x11; kali linux x86_64) applewebkit/537.36 (khtml, like gecko) chrome/44.0.2403.157 safari/537.36"
222.252.27.209 - - [04/Nov/2025:06:16:23 +0000] "GET /wp-content/uploads/wcdp-uploads/temp/2147a3985293/prv8.php HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/115.0"
165.22.229.185 - - [04/Nov/2025:06:42:48 +0000] "GET / HTTP/1.1" 200 51945 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"
165.22.229.185 - - [04/Nov/2025:06:42:49 +0000] "GET /favicon.ico HTTP/1.1" 200 51945 "http://nakedfoam.lojoweb.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"
@ Telegram