| Current File : /home/n742ef5/access-logs/4742ef636f9889882.temporary.link-ssl_log |
147.185.132.203 - - [20/Jul/2025:08:08:21 -0400] "GET /wp-login.php HTTP/1.1" 200 277 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
162.216.150.38 - - [20/Jul/2025:08:09:06 -0400] "GET /shell HTTP/1.1" 302 - "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
162.216.150.38 - - [20/Jul/2025:08:09:07 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13225 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
162.216.149.217 - - [20/Jul/2025:08:13:21 -0400] "GET /webshell HTTP/1.1" 302 - "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
162.216.149.217 - - [20/Jul/2025:08:13:22 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13225 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
35.203.210.25 - - [20/Jul/2025:08:13:37 -0400] "GET /shell.php HTTP/1.1" 302 - "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
35.203.210.25 - - [20/Jul/2025:08:13:38 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13225 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
35.203.210.117 - - [20/Jul/2025:08:17:36 -0400] "GET /webshell.php HTTP/1.1" 302 - "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
35.203.210.117 - - [20/Jul/2025:08:17:37 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13225 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
167.94.146.49 - - [20/Jul/2025:08:49:47 -0400] "GET / HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.146.49 - - [20/Jul/2025:08:49:59 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13313 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.146.49 - - [20/Jul/2025:08:50:01 -0400] "GET /favicon.ico HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.146.49 - - [20/Jul/2025:08:50:02 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13313 "https://vps53967.inmotionhosting.com/favicon.ico" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.146.49 - - [20/Jul/2025:08:50:10 -0400] "GET /security.txt HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.138.198 - - [20/Jul/2025:09:13:41 -0400] "GET / HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
45.227.253.15 - - [20/Jul/2025:09:13:45 -0400] "GET /index.php/jk HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36"
45.227.253.15 - - [20/Jul/2025:09:13:46 -0400] "GET /index.php/wp-admin/setup-config.php HTTP/1.1" 500 3003 "https://4742ef636f9889882.temporary.link/index.php/jk" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36"
167.94.138.198 - - [20/Jul/2025:09:14:05 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13313 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.138.198 - - [20/Jul/2025:09:14:07 -0400] "GET /favicon.ico HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.138.198 - - [20/Jul/2025:09:14:10 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13313 "https://vps53967.inmotionhosting.com/favicon.ico" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
167.94.138.198 - - [20/Jul/2025:09:14:34 -0400] "GET /security.txt HTTP/1.1" 302 - "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
118.193.39.45 - - [20/Jul/2025:09:23:34 -0400] "GET / HTTP/1.1" 302 - "-" "NTRIP GNSSInternetRadio"
118.193.39.45 - - [20/Jul/2025:09:23:35 -0400] "GET / HTTP/1.0" 302 - "-" "-"
118.193.39.45 - - [20/Jul/2025:09:23:35 -0400] "GET / HTTP/1.0" 302 - "-" "-"
118.193.39.45 - - [20/Jul/2025:09:23:36 -0400] "GET / HTTP/1.0" 302 - "-" "-"
118.193.39.45 - - [20/Jul/2025:09:23:37 -0400] "GET / HTTP/1.0" 302 - "-" "-"
118.193.39.45 - - [20/Jul/2025:09:23:38 -0400] "GET / HTTP/1.1" 302 - "-" "-"
135.237.126.148 - - [20/Jul/2025:09:23:55 -0400] "GET /actuator/health HTTP/1.1" 302 - "-" "Mozilla/5.0 zgrab/0.x"
185.226.197.12 - - [20/Jul/2025:09:35:44 -0400] "GET / HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36"
185.226.197.12 - - [20/Jul/2025:09:35:46 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13345 "https://www.vps86039.inmotionhosting.com/" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36"
134.199.166.108 - - [20/Jul/2025:09:37:48 -0400] "GET /ab2g HTTP/1.1" 302 - "-" "Mozilla/5.0 zgrab/0.x"
134.199.166.108 - - [20/Jul/2025:09:37:48 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13193 "https://104.247.76.25/ab2g" "Mozilla/5.0 zgrab/0.x"
134.199.166.108 - - [20/Jul/2025:09:37:49 -0400] "GET /ab2h HTTP/1.1" 302 - "-" "Mozilla/5.0 zgrab/0.x"
134.199.166.108 - - [20/Jul/2025:09:37:49 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13193 "https://104.247.76.25/ab2h" "Mozilla/5.0 zgrab/0.x"
134.199.166.108 - - [20/Jul/2025:09:37:50 -0400] "GET /alive.php HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
134.199.166.108 - - [20/Jul/2025:09:37:55 -0400] "GET / HTTP/1.0" 302 - "-" "-"
134.199.166.108 - - [20/Jul/2025:09:37:56 -0400] "GET / HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
134.199.166.108 - - [20/Jul/2025:09:37:57 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13193 "https://104.247.76.25/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
134.199.166.108 - - [20/Jul/2025:09:37:57 -0400] "GET / HTTP/1.0" 302 - "-" "-"
134.199.166.108 - - [20/Jul/2025:09:37:58 -0400] "GET /t4 HTTP/1.1" 302 - "-" "Mozilla/5.0"
134.199.166.108 - - [20/Jul/2025:09:37:59 -0400] "GET / HTTP/1.0" 302 - "-" "-"
134.199.166.108 - - [20/Jul/2025:09:38:00 -0400] "GET /favicon.ico HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
134.199.166.108 - - [20/Jul/2025:09:38:01 -0400] "GET / HTTP/1.1" 302 - "-" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 10.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729)"
134.199.166.108 - - [20/Jul/2025:09:38:02 -0400] "GET /teorema505?t=1 HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36"
202.238.194.242 - - [20/Jul/2025:09:40:24 -0400] "GET /adminfuns.php HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36"
202.238.194.242 - - [20/Jul/2025:09:40:24 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13345 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36"
196.251.115.147 - - [20/Jul/2025:09:43:53 -0400] "GET /.env HTTP/1.1" 302 - "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
154.49.205.188 - - [20/Jul/2025:09:50:07 -0400] "GET / HTTP/1.1" 401 52 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:82.0) Gecko/20100101 Firefox/82.0"
104.234.115.116 - - [20/Jul/2025:10:01:28 -0400] "GET / HTTP/1.1" 302 - "-" "'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'"
89.42.231.140 - - [20/Jul/2025:10:06:15 -0400] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 302 - "-" "-"
89.42.231.140 - - [20/Jul/2025:10:06:15 -0400] "GET /wp-admin/setup-config.php HTTP/1.1" 200 13225 "https://104.247.76.25:443/cgi-bin/luci/;stok=/locale" "-"
87.255.194.135 - - [20/Jul/2025:10:30:59 -0400] "GET /admin/assets/js/pbxlib.js HTTP/1.0" 302 - "-" "nvdorz"