192.53.170.243 - - [28/Jan/2023:01:08:25 +0100] "GET /owa/ HTTP/1.1" 301 304 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
192.53.170.243 - - [28/Jan/2023:01:08:28 +0100] "GET /autodiscover/autodiscover.json?a..foo.var/owa/?&Email=autodiscover/autodiscover.json?a..foo.var&Protocol=XYZ&FooProtocol=%50owershell HTTP/1.1" 301 378 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
167.248.133.61 - - [28/Jan/2023:02:14:52 +0100] "GET / HTTP/1.1" 301 383 "-" "-"
167.248.133.61 - - [28/Jan/2023:02:14:52 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.248.133.61 - - [28/Jan/2023:02:14:53 +0100] "PRI * HTTP/2.0" 400 379 "-" "-"
194.110.203.38 - - [28/Jan/2023:02:37:30 +0100] "GET /secret.env HTTP/1.1" 301 396 "-" "Firefox"
185.180.143.7 - - [28/Jan/2023:03:14:09 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
194.110.203.42 - - [28/Jan/2023:04:11:59 +0100] "GET /db.env HTTP/1.1" 301 383 "-" "Firefox"
205.210.31.154 - - [28/Jan/2023:05:51:11 +0100] "GET / HTTP/1.1" 301 394 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"
194.110.203.42 - - [28/Jan/2023:05:57:59 +0100] "GET /prod.env HTTP/1.1" 301 385 "-" "Firefox"
205.210.31.51 - - [28/Jan/2023:06:09:59 +0100] "GET / HTTP/1.1" 301 385 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"
205.210.31.164 - - [28/Jan/2023:06:40:24 +0100] "GET / HTTP/1.1" 301 394 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"
205.210.31.53 - - [28/Jan/2023:07:17:41 +0100] "GET / HTTP/1.1" 301 380 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"
192.241.213.67 - - [28/Jan/2023:07:19:09 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 zgrab/0.x"
51.158.66.83 - - [28/Jan/2023:08:05:08 +0100] "GET / HTTP/1.1" 301 393 "-" "-"
185.180.143.8 - - [28/Jan/2023:08:58:13 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"
194.110.203.47 - - [28/Jan/2023:09:16:02 +0100] "GET /dev.env HTTP/1.1" 301 393 "-" "Firefox"
194.110.203.41 - - [28/Jan/2023:09:16:51 +0100] "GET /dev.env HTTP/1.1" 301 401 "-" "Firefox"
205.210.31.142 - - [28/Jan/2023:09:47:54 +0100] "GET / HTTP/1.1" 301 379 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"
4.184.57.28 - - [28/Jan/2023:10:25:04 +0100] "GET / HTTP/1.1" 301 301 "-" "Python/3.10 aiohttp/3.8.3"
194.110.203.38 - - [28/Jan/2023:11:06:52 +0100] "GET /common.yml HTTP/1.1" 301 404 "-" "Firefox"
193.201.9.139 - - [28/Jan/2023:11:12:22 +0100] "GET /autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com HTTP/1.1" 301 349 "-" "Mozilla/5.0 (compatible; Baiduspider/2.0; +http://www.baidu.com/search/spider.html)"
74.82.47.5 - - [28/Jan/2023:11:16:57 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36 Edg/105.0.1343.50"
194.110.203.44 - - [28/Jan/2023:11:26:13 +0100] "GET /common.yml HTTP/1.1" 301 387 "-" "Firefox"
74.82.47.5 - - [28/Jan/2023:11:29:50 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36"
60.217.75.70 - - [28/Jan/2023:11:47:20 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0"
194.110.203.40 - - [28/Jan/2023:13:01:20 +0100] "GET /common.yaml HTTP/1.1" 301 405 "-" "Firefox"
178.128.170.109 - - [28/Jan/2023:13:04:27 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36"
194.110.203.42 - - [28/Jan/2023:14:12:37 +0100] "GET /hosts.env HTTP/1.1" 301 386 "-" "Firefox"
194.110.203.45 - - [28/Jan/2023:14:15:24 +0100] "GET /hosts.env HTTP/1.1" 301 403 "-" "Firefox"
159.203.224.7 - - [28/Jan/2023:14:24:50 +0100] "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 301 328 "-" "Mozilla/5.0 zgrab/0.x"
40.118.212.119 - - [28/Jan/2023:15:13:54 +0100] "GET / HTTP/1.1" 301 383 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2840.98 Safari/537.36"
194.110.203.42 - - [28/Jan/2023:15:44:02 +0100] "GET /hosts.yml HTTP/1.1" 301 386 "-" "Firefox"
194.110.203.41 - - [28/Jan/2023:15:52:36 +0100] "GET /hosts.yml HTTP/1.1" 301 395 "-" "Firefox"
194.110.203.41 - - [28/Jan/2023:15:54:35 +0100] "GET /hosts.yml HTTP/1.1" 301 403 "-" "Firefox"
87.236.176.240 - - [28/Jan/2023:16:12:01 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)"
194.110.203.45 - - [28/Jan/2023:17:51:20 +0100] "GET /hosts.yaml HTTP/1.1" 301 396 "-" "Firefox"
205.210.31.12 - - [28/Jan/2023:19:04:48 +0100] "GET / HTTP/1.1" 301 393 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"
43.129.201.102 - - [28/Jan/2023:19:18:16 +0100] "POST /dns-query HTTP/1.1" 301 392 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:18 +0100] "GET /dns-query?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 301 433 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:19 +0100] "POST / HTTP/1.1" 301 383 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:20 +0100] "GET /?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 301 424 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:21 +0100] "POST /resolve HTTP/1.1" 301 390 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:23 +0100] "GET /resolve?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 301 431 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:24 +0100] "POST /doh HTTP/1.1" 301 386 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:26 +0100] "GET /doh?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 301 427 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:27 +0100] "POST /doh/family-filter HTTP/1.1" 301 400 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:28 +0100] "GET /doh/family-filter?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 301 441 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:29 +0100] "POST /doh/secure-filter HTTP/1.1" 301 400 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:30 +0100] "GET /doh/secure-filter?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 301 441 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:32 +0100] "POST /query HTTP/1.1" 301 388 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:33 +0100] "GET /query?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 301 429 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
43.129.201.102 - - [28/Jan/2023:19:18:34 +0100] "POST /ads HTTP/1.1" 301 386 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36"
192.241.193.104 - - [28/Jan/2023:19:27:08 +0100] "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 301 335 "-" "Mozilla/5.0 zgrab/0.x"
194.110.203.46 - - [28/Jan/2023:19:35:51 +0100] "GET /web.yml HTTP/1.1" 301 393 "-" "Firefox"
205.210.31.177 - - [28/Jan/2023:19:47:06 +0100] "GET / HTTP/1.1" 301 383 "-" "Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scans, please send IP addresses/domains to: scaninfo@paloaltonetworks.com"
194.110.203.47 - - [28/Jan/2023:21:05:52 +0100] "GET /web.yaml HTTP/1.1" 301 394 "-" "Firefox"
192.241.222.31 - - [28/Jan/2023:21:13:42 +0100] "GET /actuator/health HTTP/1.1" 301 310 "-" "Mozilla/5.0 zgrab/0.x"
146.88.240.11 - - [28/Jan/2023:21:25:37 +0100] "-" 408 - "-" "-"
35.91.102.182 - - [28/Jan/2023:22:43:49 +0100] "GET / HTTP/1.1" 301 307 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36"
194.110.203.40 - - [28/Jan/2023:23:11:33 +0100] "GET /db.env HTTP/1.1" 301 383 "-" "Firefox"
194.110.203.40 - - [28/Jan/2023:23:21:23 +0100] "GET /db.env HTTP/1.1" 301 400 "-" "Firefox"
163.172.148.199 - - [28/Jan/2023:23:21:48 +0100] "GET / HTTP/1.1" 301 385 "-" "-"
207.154.194.102 - - [28/Jan/2023:23:28:46 +0100] "GET /ab2g HTTP/1.1" 301 304 "-" "Mozilla/5.0 zgrab/0.x"
207.154.194.102 - - [28/Jan/2023:23:28:47 +0100] "GET /ab2h HTTP/1.1" 301 304 "-" "Mozilla/5.0 zgrab/0.x"
207.154.194.102 - - [28/Jan/2023:23:28:48 +0100] "GET / HTTP/1.1" 301 301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
34.76.96.55 - - [29/Jan/2023:00:37:10 +0100] "GET / HTTP/1.1" 301 301 "-" "python-requests/2.28.2"
103.203.59.1 - - [29/Jan/2023:00:49:12 +0100] "GET / HTTP/1.1" 301 383 "-" "HTTP Banner Detection (https://security.ipip.net)"