54.36.149.21 - - [24/Sep/2022:17:06:19 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.3aholdings.com"
54.36.148.87 - - [24/Sep/2022:17:06:21 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.3aholdings.com"
192.29.97.49 - - [24/Sep/2022:17:48:02 -0700] "HEAD /robots.txt HTTP/1.1" 404 - "-" "DF Bot 1.0" "3aholdings.com"
192.29.97.49 - - [24/Sep/2022:17:48:02 -0700] "GET /robots.txt HTTP/1.1" 404 73 "-" "DF Bot 1.0" "3aholdings.com"
192.29.97.49 - - [24/Sep/2022:17:48:02 -0700] "GET / HTTP/1.1" 200 398 "-" "DF Bot 1.0" "3aholdings.com"
34.221.177.3 - - [24/Sep/2022:19:39:09 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
52.89.37.214 - - [24/Sep/2022:19:39:11 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
35.164.187.38 - - [24/Sep/2022:19:39:34 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
35.164.187.38 - - [24/Sep/2022:19:39:35 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
52.40.140.194 - - [24/Sep/2022:19:39:43 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
52.40.140.194 - - [24/Sep/2022:19:39:44 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "3aholdings.com"
42.236.10.72 - - [24/Sep/2022:19:55:03 -0700] "GET / HTTP/1.1" 200 270 "http://www.3aholdings.com/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36; 360Spider" "www.3aholdings.com"
46.161.27.156 - - [24/Sep/2022:20:06:09 -0700] "GET /wp-login.php HTTP/1.1" 500 2141 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/18.17763" "3aholdings.com"
178.128.219.183 - - [24/Sep/2022:20:36:36 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
178.128.219.183 - - [24/Sep/2022:20:36:36 -0700] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
178.128.219.183 - - [24/Sep/2022:20:36:39 -0700] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
178.128.219.183 - - [24/Sep/2022:20:36:39 -0700] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
178.128.219.183 - - [24/Sep/2022:20:36:40 -0700] "GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
178.128.219.183 - - [24/Sep/2022:20:36:41 -0700] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
178.128.219.183 - - [24/Sep/2022:20:36:42 -0700] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "3aholdings.com"
117.33.227.207 - - [24/Sep/2022:21:10:02 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1" "www.3aholdings.com"
20.0.24.45 - - [24/Sep/2022:23:14:34 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
20.0.24.45 - - [24/Sep/2022:23:14:35 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" "3aholdings.com"
20.0.24.45 - - [24/Sep/2022:23:14:35 -0700] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 88 "-" "python-requests/2.28.1" "3aholdings.com"
142.93.132.111 - - [24/Sep/2022:23:38:38 -0700] "GET /wp-login.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:01:09:00 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
20.169.23.39 - - [25/Sep/2022:01:16:58 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
20.169.23.39 - - [25/Sep/2022:01:17:57 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
194.38.20.161 - - [25/Sep/2022:02:00:23 -0700] "GET /wp-content/themes/Famous/megaframe/megapanel/inc/functions.php HTTP/1.1" 404 73 "-" "ALittle Client" "3aholdings.com"
174.52.87.228 - - [25/Sep/2022:02:06:55 -0700] "GET / HTTP/1.1" 200 270 "http://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko)" "www.3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:34 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:34 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:34 -0700] "GET /xmlrpc.php?rsd HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:34 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:34 -0700] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:34 -0700] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:35 -0700] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:35 -0700] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:35 -0700] "GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:35 -0700] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:35 -0700] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:35 -0700] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.168.90.200 - - [25/Sep/2022:02:53:35 -0700] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:39 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:41 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:43 -0700] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:45 -0700] "GET /xmlrpc.php?rsd HTTP/1.1" 500 4931 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:47 -0700] "GET / HTTP/1.1" 200 398 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:50 -0700] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:52 -0700] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:54 -0700] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:56 -0700] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:19:58 -0700] "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:00 -0700] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:02 -0700] "GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:03 -0700] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:05 -0700] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:07 -0700] "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:09 -0700] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:11 -0700] "GET /media/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:13 -0700] "GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:15 -0700] "GET /site/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:17 -0700] "GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
20.0.197.206 - - [25/Sep/2022:03:20:19 -0700] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:51 -0700] "GET /shell4.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:52 -0700] "GET /ups.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:53 -0700] "GET /ru.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:53 -0700] "GET /if.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:56 -0700] "GET /vuln.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:56 -0700] "GET /fw.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:57 -0700] "GET /skipper.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:58 -0700] "GET /skippershell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:58 -0700] "GET /tttt.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:59 -0700] "GET /tshop.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:34:59 -0700] "GET /alfa.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:00 -0700] "GET /shell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:00 -0700] "GET /inje3ctor.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:01 -0700] "GET /saudi.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:02 -0700] "GET /wso.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:02 -0700] "GET /alfashell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:03 -0700] "GET /my_alfa.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:03 -0700] "GET /uploader.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:04 -0700] "GET /up.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:05 -0700] "GET /hacked.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:05 -0700] "GET /c99.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:06 -0700] "GET /priv8.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:06 -0700] "GET /Navir.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:07 -0700] "GET /cmd13.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:07 -0700] "GET /inc20k1.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:08 -0700] "GET /1index.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:09 -0700] "GET /404.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:09 -0700] "GET /swm.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:10 -0700] "GET /wp.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:10 -0700] "GET /doc.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:13 -0700] "GET /shx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:14 -0700] "GET /ws.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:15 -0700] "GET /m.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:15 -0700] "GET /edit-form.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:16 -0700] "GET /LEAF.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:16 -0700] "GET /leafmailer.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:17 -0700] "GET /mailer.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:17 -0700] "GET /leafmailer2.8.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:18 -0700] "GET /Leaf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:19 -0700] "GET /leaf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:19 -0700] "GET /x.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:20 -0700] "GET /srx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:20 -0700] "GET /1337.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:21 -0700] "GET /xx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:21 -0700] "GET /XxX.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:22 -0700] "GET /lf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:23 -0700] "GET /alex.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:23 -0700] "GET /new.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:24 -0700] "GET /marijuana.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:24 -0700] "GET /gaza.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:25 -0700] "GET /wp-admin.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:25 -0700] "GET /3index.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:26 -0700] "GET /wikindex.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:27 -0700] "GET /wso1.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:27 -0700] "GET /bb.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:28 -0700] "GET /Lux.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:04:35:29 -0700] "GET /haxor.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
114.119.154.161 - - [25/Sep/2022:05:40:18 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "3aholdings.com"
77.88.9.139 - - [25/Sep/2022:06:23:31 -0700] "GET /robots.txt HTTP/1.1" 404 73 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "3aholdings.com"
77.88.9.131 - - [25/Sep/2022:06:23:32 -0700] "GET /robots.txt HTTP/1.1" 404 73 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "www.3aholdings.com"
77.88.9.138 - - [25/Sep/2022:06:23:35 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "3aholdings.com"
77.88.9.139 - - [25/Sep/2022:06:23:36 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "www.3aholdings.com"
3.250.0.195 - - [25/Sep/2022:06:38:43 -0700] "HEAD /robots.txt HTTP/1.1" 404 - "-" "AdsTxtCrawlerTP/1.2" "3aholdings.com"
3.250.0.195 - - [25/Sep/2022:06:38:47 -0700] "HEAD /ads.txt HTTP/1.1" 404 - "-" "AdsTxtCrawlerTP/1.2" "3aholdings.com"
3.250.0.195 - - [25/Sep/2022:06:38:48 -0700] "GET /ads.txt HTTP/1.1" 404 88 "-" "AdsTxtCrawlerTP/1.2" "3aholdings.com"
3.250.0.195 - - [25/Sep/2022:06:38:49 -0700] "HEAD /robots.txt HTTP/1.1" 404 - "-" "AdsTxtCrawlerTP/1.2" "3aholdings.com"
3.250.0.195 - - [25/Sep/2022:06:38:50 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "AdsTxtCrawlerTP/1.2" "3aholdings.com"
3.250.0.195 - - [25/Sep/2022:06:38:51 -0700] "HEAD /app-ads.txt HTTP/1.1" 404 - "-" "AdsTxtCrawlerTP/1.2" "3aholdings.com"
3.250.0.195 - - [25/Sep/2022:06:38:52 -0700] "GET /app-ads.txt HTTP/1.1" 404 88 "-" "AdsTxtCrawlerTP/1.2" "3aholdings.com"
51.15.183.168 - - [25/Sep/2022:08:09:44 -0700] "GET /js/FCKeditor/editor/filemanager/browser/default/connectors/php/connector.php?Command=GetFoldersAndFiles&Type=File&CurrentFolder=%2F HTTP/1.1" 404 73 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" "3aholdings.com"
114.119.151.108 - - [25/Sep/2022:08:20:34 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "3aholdings.com"
20.169.23.39 - - [25/Sep/2022:10:16:21 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
20.169.23.39 - - [25/Sep/2022:10:17:09 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
20.198.98.42 - - [25/Sep/2022:10:18:44 -0700] "GET /wp-admin/css/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.198.98.42 - - [25/Sep/2022:10:18:56 -0700] "GET /sites/default/files/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.198.98.42 - - [25/Sep/2022:10:19:02 -0700] "GET /admin/controller/extension/extension/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.198.98.42 - - [25/Sep/2022:10:19:07 -0700] "GET /uploads/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.198.98.42 - - [25/Sep/2022:10:19:12 -0700] "GET /images/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
20.198.98.42 - - [25/Sep/2022:10:19:17 -0700] "GET /files/ HTTP/1.1" 404 88 "binance.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:10 -0700] "GET /shell4.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:10 -0700] "GET /ups.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:11 -0700] "GET /ru.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:12 -0700] "GET /if.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:12 -0700] "GET /vuln.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:13 -0700] "GET /fw.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:13 -0700] "GET /skipper.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:14 -0700] "GET /skippershell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:14 -0700] "GET /tttt.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:15 -0700] "GET /tshop.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:16 -0700] "GET /alfa.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:16 -0700] "GET /shell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:17 -0700] "GET /inje3ctor.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:17 -0700] "GET /saudi.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:18 -0700] "GET /wso.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:18 -0700] "GET /alfashell.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:32:19 -0700] "GET /my_alfa.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:20 -0700] "GET /up.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:21 -0700] "GET /hacked.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:21 -0700] "GET /c99.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:22 -0700] "GET /priv8.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:23 -0700] "GET /Navir.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:23 -0700] "GET /cmd13.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:24 -0700] "GET /inc20k1.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:24 -0700] "GET /1index.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:25 -0700] "GET /404.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:25 -0700] "GET /swm.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:26 -0700] "GET /wp.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:27 -0700] "GET /doc.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:27 -0700] "GET /shx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:28 -0700] "GET /ws.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:28 -0700] "GET /m.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:29 -0700] "GET /edit-form.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:30 -0700] "GET /LEAF.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:30 -0700] "GET /leafmailer.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:31 -0700] "GET /mailer.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:31 -0700] "GET /leafmailer2.8.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:32 -0700] "GET /Leaf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:33 -0700] "GET /leaf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:33 -0700] "GET /x.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:34 -0700] "GET /srx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:35 -0700] "GET /1337.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:35 -0700] "GET /xx.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:36 -0700] "GET /XxX.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:36 -0700] "GET /lf.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:37 -0700] "GET /alex.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:37 -0700] "GET /new.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:38 -0700] "GET /marijuana.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:39 -0700] "GET /gaza.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:39 -0700] "GET /wp-admin.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:40 -0700] "GET /3index.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:40 -0700] "GET /wikindex.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:41 -0700] "GET /wso1.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:42 -0700] "GET /bb.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:42 -0700] "GET /Lux.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
104.41.4.32 - - [25/Sep/2022:10:33:43 -0700] "GET /haxor.php HTTP/1.1" 404 88 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" "3aholdings.com"
114.119.146.246 - - [25/Sep/2022:10:49:42 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "www.3aholdings.com"
107.180.103.185 - - [25/Sep/2022:10:51:32 -0700] "GET /wp-login.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" "3aholdings.com"
20.169.23.39 - - [25/Sep/2022:14:29:42 -0700] "POST / HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" "3aholdings.com"
114.119.152.46 - - [25/Sep/2022:14:31:58 -0700] "GET /?C=D%3BO%3DA HTTP/1.1" 200 270 "http://www.3aholdings.com/?C=M%3BO%3DA" "Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "www.3aholdings.com"
114.119.152.47 - - [25/Sep/2022:14:45:00 -0700] "GET /?C=N%3BO%3DD HTTP/1.1" 200 270 "https://3aholdings.com?C=D%3BO%3DA" "Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" "3aholdings.com"
5.161.158.224 - - [25/Sep/2022:15:25:12 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 12_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/80.0.3987.95 Mobile/15E148 Safari/605.1" "3aholdings.com"
103.192.80.220 - - [25/Sep/2022:15:37:01 -0700] "GET /wp-admin/wp_mna.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" "3aholdings.com"
103.192.80.220 - - [25/Sep/2022:15:37:02 -0700] "GET /wp-includes/wp-class.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)" "3aholdings.com"
51.222.253.13 - - [25/Sep/2022:16:30:05 -0700] "GET /robots.txt HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.3aholdings.com"
51.222.253.2 - - [25/Sep/2022:16:30:06 -0700] "GET / HTTP/1.1" 200 270 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.3aholdings.com"