HEX
Server: Apache
System: Linux srv-plesk28.ps.kz 5.14.0-284.18.1.el9_2.x86_64 #1 SMP PREEMPT_DYNAMIC Thu Jun 29 17:06:27 EDT 2023 x86_64
User: greencl1 (10085)
PHP: 8.1.33
Disabled: apache_setenv,dl,eval,exec,openlog,passthru,pcntl_exec,pcntl_fork,popen,posix_getpwuid,posix_kill,posix_mkfifo,posix_setpgid,posix_setsid,posix_setuid,proc_close,proc_get_status,proc_nice,proc_open,proc_terminate,shell_exec,socket_create,socket_create_listen,socket_create_pair,syslog,system,socket_listen,stream_socket_server
$ pwd: /var/www/vhosts/greenclinic.kz/logs/zakup.greenclinic.kz/
Upload Files
File: /var/www/vhosts/greenclinic.kz/logs/zakup.greenclinic.kz/access_ssl_log.webstat
35.90.78.16 - - [29/Dec/2025:07:00:38 +0500] "GET / HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
35.90.78.16 - - [29/Dec/2025:07:00:38 +0500] "GET //wp-includes/wlwmanifest.xml HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
35.90.78.16 - - [29/Dec/2025:07:00:38 +0500] "GET / HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
35.90.78.16 - - [29/Dec/2025:07:00:39 +0500] "GET //?author=1 HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
35.90.78.16 - - [29/Dec/2025:07:00:39 +0500] "GET //?author=2 HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
35.90.78.16 - - [29/Dec/2025:07:00:39 +0500] "GET //wp-json/wp/v2/users/ HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
35.90.78.16 - - [29/Dec/2025:07:00:57 +0500] "GET //wp-json/oembed/1.0/embed?url=https://zakup.greenclinic.kz/ HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "POST /wp-plain.php HTTP/1.0" 403 4830 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET / HTTP/1.0" 200 6511 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /wp-content/plugins/fix/up.php HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.0" 500 4630 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /qsylndkf.php?Fox=d3wL7 HTTP/1.0" 403 4830 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /wp-content/plugins/apikey/apikey.php?test=hello HTTP/1.0" 500 4630 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.0" 500 4630 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /plugins/content/apismtp/apismtp.php?test=hello HTTP/1.0" 500 4630 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /wp-content/plugins/apikey/apikey.php.suspected?test=hello HTTP/1.0" 500 4630 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
195.24.236.17 - - [29/Dec/2025:13:29:55 +0500] "GET /plugins/content/apismtp/apismtp.php.suspected?test=hello HTTP/1.0" 500 4630 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
167.71.159.9 - - [29/Dec/2025:15:22:16 +0500] "GET / HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
167.71.159.9 - - [29/Dec/2025:15:22:17 +0500] "GET //wp-includes/wlwmanifest.xml HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
167.71.159.9 - - [29/Dec/2025:15:22:19 +0500] "GET / HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
167.71.159.9 - - [29/Dec/2025:15:22:19 +0500] "GET //?author=1 HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
167.71.159.9 - - [29/Dec/2025:15:22:22 +0500] "GET //?author=2 HTTP/1.0" 200 6511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
167.71.159.9 - - [29/Dec/2025:15:22:22 +0500] "GET //wp-json/wp/v2/users/ HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
167.71.159.9 - - [29/Dec/2025:15:22:23 +0500] "GET //wp-json/oembed/1.0/embed?url=https://zakup.greenclinic.kz/ HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:44 +0500] "GET /.well-known/index.php HTTP/1.0" 500 4630 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:44 +0500] "GET /404.php HTTP/1.0" 403 4830 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:45 +0500] "GET /aa.php HTTP/1.0" 403 4830 "https://www.google.co.uk/" "Mozilla/5.0 (Linux; Android 12; V2134) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:46 +0500] "GET /abcd.php HTTP/1.0" 403 4830 "https://www.google.com/" "Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:46 +0500] "GET /admin.php HTTP/1.0" 500 4630 "https://www.yahoo.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1"
4.218.10.83 - - [29/Dec/2025:17:45:47 +0500] "GET /adminfuns.php HTTP/1.0" 500 4630 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:48 +0500] "GET /ahax.php HTTP/1.0" 403 4830 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:48 +0500] "GET /akcc.php HTTP/1.0" 403 4830 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36"
4.218.10.83 - - [29/Dec/2025:17:45:49 +0500] "GET /alfa.php HTTP/1.0" 403 4830 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1"
4.218.10.83 - - [29/Dec/2025:17:45:49 +0500] "GET /assets/images/ HTTP/1.0" 500 4630 "https://duckduckgo.com/" "Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
66.249.74.128 - - [29/Dec/2025:18:25:45 +0500] "GET /robots.txt HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
20.196.91.209 - - [29/Dec/2025:18:58:47 +0500] "GET /2.php HTTP/1.0" 403 4830 "-" "-"
20.196.91.209 - - [29/Dec/2025:18:58:48 +0500] "GET /ALFA_DATA/alfacgiapi/ HTTP/1.0" 500 4630 "-" "-"
20.196.91.209 - - [29/Dec/2025:18:58:48 +0500] "GET /a.php HTTP/1.0" 403 4830 "-" "-"
205.210.31.39 - - [29/Dec/2025:19:09:00 +0500] "GET / HTTP/1.0" 200 6511 "-" "-"
77.90.185.12 - - [29/Dec/2025:23:13:15 +0500] "GET /wp-login.php HTTP/1.0" 500 4630 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:121.0) Gecko/20100101 Firefox/121.0"
77.90.185.12 - - [29/Dec/2025:23:13:16 +0500] "GET /wp-admin/ HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15"
128.251.12.247 - - [29/Dec/2025:23:45:48 +0500] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:48 +0500] "GET /class-t.api.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:49 +0500] "GET /zwso.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:49 +0500] "GET /wp-admin/css/colors/blue/index.php HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:50 +0500] "GET /class19.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:50 +0500] "GET /class20.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:50 +0500] "GET /admin.php?p= HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:50 +0500] "GET /randkeyword.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:45:50 +0500] "GET /fwe.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:54 +0500] "GET /abcd.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:54 +0500] "GET /autoload_classmap.php?p= HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:54 +0500] "GET /inputs.php HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:55 +0500] "GET /about.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:55 +0500] "GET /alfa.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:55 +0500] "GET /themes/twentytwentytwo/index.php HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:55 +0500] "GET /wp-admin/js/wp-conflg.php?p= HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:56 +0500] "GET /wp-admin/wp-conflg.php?p= HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:56 +0500] "GET /wp-admin/css/wp-conflg.php?p= HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:56 +0500] "GET /manager.php?p= HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:56 +0500] "GET /item.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [29/Dec/2025:23:55:56 +0500] "GET /plugins/Cache/footer.php HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:57 +0500] "GET /.well-known/log.php HTTP/1.0" 500 4630 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:57 +0500] "GET /class.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:58 +0500] "GET /bless5.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:58 +0500] "GET /lock360.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:59 +0500] "GET /f35.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:59 +0500] "GET /ioxi-o1.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:59 +0500] "GET /juuuu.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:05:59 +0500] "GET /ha.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:06:00 +0500] "GET /gg.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:06:00 +0500] "GET /we2.php HTTP/1.0" 403 4830 "-" "-"
128.251.12.247 - - [30/Dec/2025:00:16:01 +0500] "GET /rh.php HTTP/1.0" 403 4830 "-" "-"
4.197.208.98 - - [30/Dec/2025:00:50:26 +0500] "GET /info.php HTTP/1.0" 403 4830 "https://www.bing.com/" "Mozilla/5.0 (Linux; Android 12; SM-A525F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36"
4.197.208.98 - - [30/Dec/2025:00:50:27 +0500] "GET /about.php HTTP/1.0" 403 4830 "https://www.google.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1"
4.197.208.98 - - [30/Dec/2025:00:50:28 +0500] "GET /admin.php HTTP/1.0" 500 4630 "https://www.google.fr/" "Mozilla/5.g (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
4.197.208.98 - - [30/Dec/2025:00:50:28 +0500] "GET /edit.php HTTP/1.0" 500 4630 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 13; SM-S908E) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
4.197.208.98 - - [30/Dec/2025:00:50:29 +0500] "GET /ahax.php HTTP/1.0" 403 4830 "https://www.google.fr/" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_6_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1"
4.197.208.98 - - [30/Dec/2025:00:50:30 +0500] "GET /ioxi-o.php HTTP/1.0" 403 4830 "https://www.google.co.uk/" "Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1"
4.197.208.98 - - [30/Dec/2025:00:50:30 +0500] "GET /bless.php HTTP/1.0" 403 4830 "https://www.google.de/" "Mozilla/5.0 (Linux; Android 14; Pixel 8 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36"
4.197.208.98 - - [30/Dec/2025:00:50:31 +0500] "GET /bolt.php HTTP/1.0" 403 4830 "https://www.yahoo.com/" "Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36"
37.237.129.6 - - [30/Dec/2025:01:56:24 +0500] "GET /robots.txt HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1823.43"
114.119.136.109 - - [30/Dec/2025:02:16:05 +0500] "GET /robots.txt HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)"
104.210.140.131 - - [30/Dec/2025:03:30:08 +0500] "GET /robots.txt HTTP/1.0" 500 4630 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot"
@ Telegram