/home/crealab/logs/carweb.brainware.com.co.bkup
167.71.30.92 - - [29/Nov/2025:11:47:57 +0000] "GET / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0"
170.10.164.108 - - [29/Nov/2025:11:48:00 +0000] "POST /wp-cron.php?doing_wp_cron=1764416880.1573660373687744140625 HTTP/1.1" 200 0 "-" "WordPress/6.8.3; https://carweb.brainware.com.co"
111.7.100.22 - - [29/Nov/2025:14:11:56 +0000] "GET / HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36"
170.10.164.108 - - [29/Nov/2025:14:14:42 +0000] "POST /wp-cron.php?doing_wp_cron=1764425682.1465420722961425781250 HTTP/1.1" 200 0 "-" "WordPress/6.8.3; https://carweb.brainware.com.co"
170.10.164.108 - - [30/Nov/2025:19:21:56 +0000] "POST /wp-cron.php?doing_wp_cron=1764530516.2931408882141113281250 HTTP/1.1" 200 0 "-" "WordPress/6.8.3; https://carweb.brainware.com.co"
34.245.239.240 - - [30/Nov/2025:19:21:53 +0000] "HEAD / HTTP/1.1" 200 0 "https://www.netcraft.com/survey/" "Mozilla/4.0 (compatible; Netcraft Web Server Survey)"
103.28.116.41 - - [30/Nov/2025:23:28:48 +0000] "GET /zz12.php HTTP/1.1" 302 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
103.28.116.41 - - [30/Nov/2025:23:28:51 +0000] "GET /zz12.php?p= HTTP/1.1" 200 2048 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
114.79.4.162 - - [01/Dec/2025:00:24:08 +0000] "GET /lrwit7bvakghhggw6jCakc.php HTTP/1.1" 200 2048 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/136.0.7103.25 Safari/537.36"
170.10.164.108 - - [01/Dec/2025:13:39:26 +0000] "POST /wp-cron.php?doing_wp_cron=1764596366.0649669170379638671875 HTTP/1.1" 200 0 "-" "WordPress/6.8.3; https://carweb.brainware.com.co"
136.115.252.147 - - [01/Dec/2025:13:39:19 +0000] "GET / HTTP/1.1" 200 35303 "-" "Mozilla/5.0 (X11; CrOS i686 3912.101.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.116 Safari/537.36"
34.58.22.107 - - [01/Dec/2025:13:39:37 +0000] "GET / HTTP/1.1" 301 0 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1467.0 Safari/537.36"
34.58.22.107 - - [01/Dec/2025:13:39:37 +0000] "GET / HTTP/1.1" 200 35297 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1467.0 Safari/537.36"
198.235.24.20 - - [01/Dec/2025:16:14:57 +0000] "GET / HTTP/1.1" 403 1242 "-" "-"
114.79.2.169 - - [01/Dec/2025:21:57:11 +0000] "GET /lrwit7bvakghhggw6jCakc.php HTTP/1.1" 200 2089 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/136.0.7103.25 Safari/537.36"
114.10.79.95 - - [01/Dec/2025:23:50:09 +0000] "GET /zz12.php HTTP/1.1" 302 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
114.10.79.95 - - [01/Dec/2025:23:50:10 +0000] "GET /zz12.php?p= HTTP/1.1" 200 2089 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
147.185.132.18 - - [02/Dec/2025:05:20:00 +0000] "GET / HTTP/1.1" 200 115791 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
170.10.164.108 - - [02/Dec/2025:05:20:03 +0000] "POST /wp-cron.php?doing_wp_cron=1764652803.7480719089508056640625 HTTP/1.1" 200 0 "-" "WordPress/6.8.3; https://carweb.brainware.com.co"
147.185.132.33 - - [02/Dec/2025:09:10:24 +0000] "GET /wp-login.php HTTP/1.1" 302 0 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
170.10.164.108 - - [02/Dec/2025:09:10:27 +0000] "POST /wp-cron.php?doing_wp_cron=1764666627.0540380477905273437500 HTTP/1.1" 200 0 "-" "WordPress/6.8.3; https://carweb.brainware.com.co"
170.10.164.108 - - [02/Dec/2025:15:23:08 +0000] "POST /wp-cron.php?doing_wp_cron=1764688988.6212100982666015625000 HTTP/1.1" 200 0 "-" "WordPress/6.8.3; https://carweb.brainware.com.co"
205.210.31.60 - - [02/Dec/2025:15:23:05 +0000] "GET / HTTP/1.1" 301 0 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
114.79.6.245 - - [02/Dec/2025:23:09:41 +0000] "GET /lrwit7bvakghhggw6jCakc.php HTTP/1.1" 200 2089 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/136.0.7103.25 Safari/537.36"
103.255.156.13 - - [03/Dec/2025:00:22:44 +0000] "GET /zz12.php HTTP/1.1" 302 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
103.255.156.13 - - [03/Dec/2025:00:22:44 +0000] "GET /zz12.php?p= HTTP/1.1" 200 2048 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
198.235.24.93 - - [03/Dec/2025:00:26:18 +0000] "GET /webshell.php HTTP/1.1" 404 119826 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
198.235.24.145 - - [03/Dec/2025:00:33:30 +0000] "GET /webshell HTTP/1.1" 200 0 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
198.235.24.101 - - [03/Dec/2025:00:37:02 +0000] "GET /shell HTTP/1.1" 404 119826 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
205.210.31.226 - - [03/Dec/2025:00:44:23 +0000] "GET /shell.php HTTP/1.1" 404 119826 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
103.255.156.66 - - [03/Dec/2025:22:58:57 +0000] "GET /zz12.php HTTP/1.1" 302 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
103.255.156.66 - - [03/Dec/2025:22:58:57 +0000] "GET /zz12.php?p= HTTP/1.1" 200 2048 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/141.0.7390.37 Safari/537.36"
114.10.77.22 - - [03/Dec/2025:23:42:10 +0000] "GET /lrwit7bvakghhggw6jCakc.php HTTP/1.1" 200 2089 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/136.0.7103.25 Safari/537.36"
134.199.226.189 - - [04/Dec/2025:07:48:28 +0000] "GET / HTTP/1.1" 200 37501 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"
170.10.164.108 - - [04/Dec/2025:07:48:31 +0000] "POST /wp-cron.php?doing_wp_cron=1764834511.4018869400024414062500 HTTP/1.1" 200 0 "-" "WordPress/6.9; https://carweb.brainware.com.co"
45.148.10.42 - - [04/Dec/2025:19:19:29 +0000] "GET / HTTP/1.1" 200 37503 "-" "python-httpx/0.28.1"
170.10.164.108 - - [04/Dec/2025:19:19:33 +0000] "POST /wp-cron.php?doing_wp_cron=1764875972.9103250503540039062500 HTTP/1.1" 200 0 "-" "WordPress/6.9; https://carweb.brainware.com.co"
Path: home/crealab/logs