51.105.27.180 - - [21/Sep/2022:17:09:38 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:39 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:39 -0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:39 -0700] "GET /xmlrpc.php?rsd HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:40 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:40 -0700] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:40 -0700] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:41 -0700] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:41 -0700] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:42 -0700] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:42 -0700] "GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:42 -0700] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:42 -0700] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:43 -0700] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:43 -0700] "GET /media/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:43 -0700] "GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:44 -0700] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
51.105.27.180 - - [21/Sep/2022:17:09:44 -0700] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:15:57 -0700] "GET /Makhdamxshell.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:16:04 -0700] "GET /wp-admin/includes/class-wp-media-list-data.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:16:22 -0700] "GET /wp-includes/wp-class.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:16:32 -0700] "GET /0.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:16 -0700] "GET /01.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:17 -0700] "GET /0byte HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:20 -0700] "GET /0byte.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:20 -0700] "GET /1.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:24 -0700] "GET /10.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:28 -0700] "GET /100.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:42 -0700] "GET /11index.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:46 -0700] "GET /13.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:17:50 -0700] "GET /1337.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:18:08 -0700] "GET /1index.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:18:11 -0700] "GET /2.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:18:37 -0700] "GET /2index.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:18:51 -0700] "GET /3.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:19:34 -0700] "GET /4.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:19:51 -0700] "GET /403.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:20:05 -0700] "GET /404.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:20:15 -0700] "GET /5.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:20:19 -0700] "GET /9.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:20:54 -0700] "GET /Alfa.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:21:19 -0700] "GET /FoxWSO.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:21:50 -0700] "GET /WSO.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:22:38 -0700] "GET /a.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:22:58 -0700] "GET /about.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:23:28 -0700] "GET /alf.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:23:28 -0700] "GET /alfa.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:24:06 -0700] "GET /alfashell.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:24:23 -0700] "GET /alwso.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:24:24 -0700] "GET /autoload_classmap.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:24:34 -0700] "GET /b.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:24:49 -0700] "GET /blog.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:24:50 -0700] "GET /blog/fw.php/ HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:24:50 -0700] "GET /bypass.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:25:02 -0700] "GET /c.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:25:24 -0700] "GET /c99.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:25:24 -0700] "GET /content.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:25:24 -0700] "GET /date.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:25:31 -0700] "GET /doc.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:26:32 -0700] "GET /e.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:26:36 -0700] "GET /edit-form.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:26:57 -0700] "GET /f.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:27:30 -0700] "GET /fox.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:27:30 -0700] "GET /fw.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:27:37 -0700] "GET /fx.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:27:41 -0700] "GET /g.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:27:53 -0700] "GET /goods.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:28:00 -0700] "GET /h.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:28:14 -0700] "GET /haxor.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:28:14 -0700] "GET /hello.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:28:18 -0700] "GET /i.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:28:22 -0700] "GET /images/about.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:28:42 -0700] "GET /jindex.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:29:05 -0700] "GET /k.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:29:44 -0700] "GET /l.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:30:13 -0700] "GET /license.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:30:50 -0700] "GET /m.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:30:53 -0700] "GET /mar.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:30:58 -0700] "GET /mari.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:31:21 -0700] "GET /marijuana.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:31:50 -0700] "GET /mini.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:32:36 -0700] "GET /n.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:32:40 -0700] "GET /new.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:32:43 -0700] "GET /o.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:33:13 -0700] "GET /ok.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:33:56 -0700] "GET /old-index.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:34:11 -0700] "GET /p.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:34:25 -0700] "GET /priv8.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:35:12 -0700] "GET /public/403.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:35:16 -0700] "GET /punisher.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:35:35 -0700] "GET /q.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:36:08 -0700] "GET /r.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:36:10 -0700] "GET /radio.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:36:20 -0700] "GET /root.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:36:21 -0700] "GET /rss.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:36:24 -0700] "GET /s.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:36:28 -0700] "GET /sh.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:36:30 -0700] "GET /shell.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:37:00 -0700] "GET /shx.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:37:40 -0700] "GET /small.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:37:44 -0700] "GET /templates/beez5/index.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:37:55 -0700] "GET /u.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:37:55 -0700] "GET /up.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:37:58 -0700] "GET /uploader.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:38:01 -0700] "GET /uploads/up.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:38:01 -0700] "GET /v.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:38:13 -0700] "GET /vuln.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:38:17 -0700] "GET /w.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:38:49 -0700] "GET /w3llstore.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:38:52 -0700] "GET /wikindex.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:39:44 -0700] "GET /wp-admin.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:39:44 -0700] "GET /wp-admin/css/fw.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:39:55 -0700] "GET /wp-admin/fw.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:39:58 -0700] "GET /wp-admin/maint/about.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:40:12 -0700] "GET /wp-admin/radio.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:40:19 -0700] "GET /wp-blog.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:40:53 -0700] "GET /wp-class.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:40:56 -0700] "GET /wp-content/about.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:40:56 -0700] "GET /wp-content/fw.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:41:17 -0700] "GET /wp-content/wp.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:41:44 -0700] "GET /wp-content/x.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:41:47 -0700] "GET /wp-file.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:41:56 -0700] "GET /wp-includes/991176.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:42:20 -0700] "GET /wp-includes/about.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:42:23 -0700] "GET /wp-includes/shell20211028.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:42:56 -0700] "GET /wp-info.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:00 -0700] "GET /wp-uploads.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:04 -0700] "GET /wp.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:43 -0700] "GET /wp2.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:46 -0700] "GET /wp_wrong_datlib.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:46 -0700] "GET /ws.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:53 -0700] "GET /wso.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:56 -0700] "GET /wso1.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:43:57 -0700] "GET /wso2.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:44:11 -0700] "GET /x.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:44:29 -0700] "GET /xl.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:44:59 -0700] "GET /xleet.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:45:52 -0700] "GET /xmlrpc.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:45:55 -0700] "GET /xx.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:46:45 -0700] "GET /xxx.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:46:45 -0700] "GET /y.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
20.197.19.67 - - [21/Sep/2022:17:47:06 -0700] "GET /z.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36" "3aholdings.com"
114.119.152.54 - - [21/Sep/2022:17:55:10 -0700] "GET /?C=M%3BO%3DA HTTP/1.1" 200 270 "https://3aholdings.com/?C=D%3BO%3DA" "Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "3aholdings.com"
54.188.149.163 - - [21/Sep/2022:19:17:06 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
35.162.208.175 - - [21/Sep/2022:19:17:06 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
34.214.107.223 - - [21/Sep/2022:19:17:28 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
34.214.107.223 - - [21/Sep/2022:19:17:28 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
34.216.146.208 - - [21/Sep/2022:19:17:42 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
34.216.146.208 - - [21/Sep/2022:19:17:44 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
157.90.181.149 - - [21/Sep/2022:19:43:54 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [21/Sep/2022:19:43:56 -0700] "GET /sitemap HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [21/Sep/2022:19:44:05 -0700] "GET /sitemap.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [21/Sep/2022:19:44:10 -0700] "GET /?C=D;O=D HTTP/1.1" 200 268 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [21/Sep/2022:19:44:13 -0700] "GET /?C=M;O=D HTTP/1.1" 200 268 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [21/Sep/2022:19:44:16 -0700] "GET /?C=N;O=A HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [21/Sep/2022:19:44:20 -0700] "GET /?C=S;O=D HTTP/1.1" 200 268 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
20.77.49.95 - - [21/Sep/2022:20:03:41 -0700] "GET /wp-admin/css/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.77.49.95 - - [21/Sep/2022:20:03:55 -0700] "GET /sites/default/files/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.77.49.95 - - [21/Sep/2022:20:04:03 -0700] "GET /admin/controller/extension/extension/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.77.49.95 - - [21/Sep/2022:20:04:11 -0700] "GET /uploads/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.77.49.95 - - [21/Sep/2022:20:04:19 -0700] "GET /images/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.77.49.95 - - [21/Sep/2022:20:04:27 -0700] "GET /files/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
120.41.45.199 - - [21/Sep/2022:20:34:37 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" "www.3aholdings.com"
208.67.104.40 - - [21/Sep/2022:20:51:17 -0700] "GET / HTTP/1.1" 200 270 "-" "python-requests/2.27.1" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:41 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:41 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:41 -0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:41 -0700] "GET /xmlrpc.php?rsd HTTP/1.1" 500 4931 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:41 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:41 -0700] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:42 -0700] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:44 -0700] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:44 -0700] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:44 -0700] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:44 -0700] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:45 -0700] "GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:45 -0700] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:45 -0700] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:45 -0700] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:45 -0700] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:45 -0700] "GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:46 -0700] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:46 -0700] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
45.55.53.27 - - [21/Sep/2022:21:11:46 -0700] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET /feed/ HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET /xmlrpc.php?rsd HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:58 -0700] "GET /2021/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:59 -0700] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:59 -0700] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:59 -0700] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:59 -0700] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
20.14.103.194 - - [21/Sep/2022:21:28:59 -0700] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:16 -0700] "GET /shell4.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:16 -0700] "GET /ups.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:17 -0700] "GET /ru.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:18 -0700] "GET /if.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:20 -0700] "GET /vuln.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:20 -0700] "GET /fw.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:21 -0700] "GET /skipper.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:22 -0700] "GET /skippershell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:22 -0700] "GET /tttt.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:23 -0700] "GET /tshop.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:23 -0700] "GET /alfa.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:24 -0700] "GET /shell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:24 -0700] "GET /inje3ctor.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:25 -0700] "GET /saudi.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:25 -0700] "GET /wso.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:26 -0700] "GET /alfashell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:27 -0700] "GET /my_alfa.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:27 -0700] "GET /uploader.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:28 -0700] "GET /up.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:28 -0700] "GET /hacked.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:29 -0700] "GET /c99.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:29 -0700] "GET /priv8.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:30 -0700] "GET /Navir.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:31 -0700] "GET /cmd13.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:33 -0700] "GET /inc20k1.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:34 -0700] "GET /1index.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:35 -0700] "GET /404.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:35 -0700] "GET /swm.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:36 -0700] "GET /wp.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:36 -0700] "GET /doc.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:37 -0700] "GET /shx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:37 -0700] "GET /ws.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:38 -0700] "GET /m.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:38 -0700] "GET /edit-form.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:39 -0700] "GET /LEAF.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:42 -0700] "GET /leafmailer.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:42 -0700] "GET /mailer.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:43 -0700] "GET /leafmailer2.8.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:43 -0700] "GET /Leaf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:44 -0700] "GET /leaf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:44 -0700] "GET /x.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:45 -0700] "GET /srx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:46 -0700] "GET /1337.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:46 -0700] "GET /xx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:47 -0700] "GET /XxX.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:47 -0700] "GET /lf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:48 -0700] "GET /alex.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:49 -0700] "GET /new.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:49 -0700] "GET /marijuana.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:50 -0700] "GET /gaza.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:50 -0700] "GET /wp-admin.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:51 -0700] "GET /3index.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:52 -0700] "GET /wikindex.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:52 -0700] "GET /wso1.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:53 -0700] "GET /bb.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:53 -0700] "GET /Lux.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [21/Sep/2022:22:02:54 -0700] "GET /haxor.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
194.38.20.161 - - [21/Sep/2022:22:10:20 -0700] "GET /wp-content/themes/konzept/style.css HTTP/1.1" 404 73 "-" "ALittle Client" "3aholdings.com"
23.88.56.79 - - [21/Sep/2022:22:10:31 -0700] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 404 88 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
23.88.56.79 - - [21/Sep/2022:22:10:36 -0700] "GET /wp-content/themes/seotheme/mar.php HTTP/1.1" 404 88 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
23.88.56.79 - - [21/Sep/2022:22:10:39 -0700] "GET /wp-includes/shell20211028.php HTTP/1.1" 404 88 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
23.88.56.79 - - [21/Sep/2022:22:10:43 -0700] "GET /wp-includes/shell20211028.php HTTP/1.1" 404 88 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.171.82.90 - - [21/Sep/2022:22:47:12 -0700] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 73 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.171.82.90 - - [21/Sep/2022:22:47:12 -0700] "POST /wp-plain.php HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.171.82.90 - - [21/Sep/2022:22:47:12 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.171.82.90 - - [21/Sep/2022:22:47:13 -0700] "POST /alfacgiapi/perl.alfa HTTP/1.1" 404 73 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.171.82.90 - - [21/Sep/2022:22:47:13 -0700] "GET /njhkuqcc.php?Fox=d3wL7 HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.171.82.90 - - [21/Sep/2022:22:47:14 -0700] "POST /wp-plain.php HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.171.82.90 - - [21/Sep/2022:22:47:15 -0700] "GET /hmfremoz.php?Fox=d3wL7 HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:01:52:33 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:01:52:42 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:01:52:43 -0700] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 88 "-" "python-requests/2.26.0" "3aholdings.com"
20.212.85.71 - - [22/Sep/2022:02:02:53 -0700] "POST / HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.106 Safari/537.36" "3aholdings.com"
20.212.85.71 - - [22/Sep/2022:02:03:16 -0700] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.106 Safari/537.36" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:03:08:59 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
20.169.23.39 - - [22/Sep/2022:03:28:01 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
14.116.152.84 - - [22/Sep/2022:04:59:45 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" "3aholdings.com"
114.119.133.125 - - [22/Sep/2022:05:54:54 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "3aholdings.com"
20.0.24.45 - - [22/Sep/2022:06:12:31 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
20.0.24.45 - - [22/Sep/2022:06:12:32 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
20.0.24.45 - - [22/Sep/2022:06:12:32 -0700] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 88 "-" "python-requests/2.28.1" "3aholdings.com"
68.174.32.180 - - [22/Sep/2022:06:52:51 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36 Edg/105.0.1343.42" "3aholdings.com"
68.174.32.180 - - [22/Sep/2022:06:52:52 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "http://3aholdings.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36 Edg/105.0.1343.42" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:07:36:57 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:07:37:03 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:07:37:18 -0700] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 88 "-" "python-requests/2.26.0" "3aholdings.com"
46.161.27.153 - - [22/Sep/2022:07:44:47 -0700] "GET /wp-login.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/18.17763" "3aholdings.com"
114.119.147.87 - - [22/Sep/2022:08:14:56 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "www.3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:02 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:03 -0700] "GET /xmlrpc.php?rsd HTTP/1.1" 500 4947 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:03 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:03 -0700] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:03 -0700] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:04 -0700] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:04 -0700] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:04 -0700] "GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:04 -0700] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
167.172.252.41 - - [22/Sep/2022:08:22:05 -0700] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:03 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:03 -0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:03 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:03 -0700] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:03 -0700] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [22/Sep/2022:09:48:04 -0700] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.77.102.28 - - [22/Sep/2022:10:05:32 -0700] "POST /wp-plain.php HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.77.102.28 - - [22/Sep/2022:10:05:32 -0700] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 73 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.77.102.28 - - [22/Sep/2022:10:05:32 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.77.102.28 - - [22/Sep/2022:10:05:33 -0700] "GET /bbwkdqgo.php?Fox=d3wL7 HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.77.102.28 - - [22/Sep/2022:10:05:33 -0700] "POST /alfacgiapi/perl.alfa HTTP/1.1" 404 73 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.77.102.28 - - [22/Sep/2022:10:05:39 -0700] "POST /wp-plain.php HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.77.102.28 - - [22/Sep/2022:10:05:40 -0700] "GET /mvefjgdy.php?Fox=d3wL7 HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
51.15.183.168 - - [22/Sep/2022:10:06:40 -0700] "GET /includes/FCKeditor/editor/filemanager/browser/default/connectors/php/connector.php?Command=GetFoldersAndFiles&Type=File&CurrentFolder=%2F HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" "3aholdings.com"
20.169.23.39 - - [22/Sep/2022:10:26:22 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
20.169.23.39 - - [22/Sep/2022:10:27:29 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
204.44.124.232 - - [22/Sep/2022:11:23:09 -0700] "GET / HTTP/1.1" 200 270 "-" "'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.39 (KHTML, like Gecko) Chrome/89.0.4389.111 Safari/537.39'" "3aholdings.com"
109.233.192.83 - - [22/Sep/2022:11:35:50 -0700] "GET /wp-login.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" "3aholdings.com"
54.36.148.147 - - [22/Sep/2022:11:50:59 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.3aholdings.com"
51.222.253.17 - - [22/Sep/2022:11:51:00 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.3aholdings.com"
54.236.1.13 - - [22/Sep/2022:12:45:56 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; Pinterestbot/1.0; +http://www.pinterest.com/bot.html)" "3aholdings.com"
54.236.1.13 - - [22/Sep/2022:12:45:56 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; Pinterestbot/1.0; +http://www.pinterest.com/bot.html)" "3aholdings.com"
54.236.1.13 - - [22/Sep/2022:12:45:56 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; Pinterestbot/1.0; +http://www.pinterest.com/bot.html)" "3aholdings.com"
185.39.144.147 - - [22/Sep/2022:12:57:07 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2)" "www.3aholdings.com"
157.90.181.149 - - [22/Sep/2022:13:29:10 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [22/Sep/2022:13:29:12 -0700] "GET /sitemap HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
157.90.181.149 - - [22/Sep/2022:13:29:16 -0700] "GET /sitemap.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; BLEXBot/1.0; +http://webmeup-crawler.com/)" "3aholdings.com"
207.46.13.215 - - [22/Sep/2022:13:38:02 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "www.3aholdings.com"
84.14.205.54 - - [22/Sep/2022:13:39:37 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/64.0.3282.140 Safari/537.36" "www.3aholdings.com"
84.14.205.54 - - [22/Sep/2022:13:39:38 -0700] "GET / HTTP/1.1" 200 270 "http://www.3aholdings.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/64.0.3282.140 Safari/537.36" "www.3aholdings.com"
51.222.253.3 - - [22/Sep/2022:14:36:50 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "3aholdings.com"
51.222.253.6 - - [22/Sep/2022:14:36:51 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "3aholdings.com"
54.212.26.32 - - [22/Sep/2022:15:18:45 -0700] "HEAD / HTTP/1.1" 200 - "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.76 Safari/537.36" "3aholdings.com"
52.34.3.56 - - [22/Sep/2022:15:18:46 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Safari/537.36" "3aholdings.com"
20.0.189.220 - - [22/Sep/2022:16:20:43 -0700] "POST /wp-plain.php HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.0.189.220 - - [22/Sep/2022:16:20:43 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.0.189.220 - - [22/Sep/2022:16:20:44 -0700] "GET /trfozkfm.php?Fox=d3wL7 HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.0.189.220 - - [22/Sep/2022:16:20:45 -0700] "POST /wp-plain.php HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.0.189.220 - - [22/Sep/2022:16:20:45 -0700] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 73 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.0.189.220 - - [22/Sep/2022:16:20:47 -0700] "POST /alfacgiapi/perl.alfa HTTP/1.1" 404 73 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
20.0.189.220 - - [22/Sep/2022:16:20:47 -0700] "GET /kqiriprh.php?Fox=d3wL7 HTTP/1.1" 404 73 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" "3aholdings.com"
104.41.4.32 - - [22/Sep/2022:16:28:09 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
20.216.135.9 - - [22/Sep/2022:16:38:09 -0700] "GET /wp-content/ HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" "3aholdings.com"