LiteSpeed Caching creates huge caching folder
-
Hi, I use LiteSpeed caching on dozens of website I manage for my clients. On one website, I see something odd: the lscache folder is huge. Where the website itself takes up about 700MB, the lscache folder is 4,3GB.
I’ve emptied the whole folder multiple times, but when the cache is built back up again, the 4+GB are back.
The LearnDash/WooCommerce website has roughly 500 pages, nothing shocking I would say. And the uploads folder is about 350MB.
On other websites I manage, the LScache folder doesn’t even exist.
Am I doing something wrong in the setup, or is something going wrong?
-
this usually happens if your page has a lot of query string , or being flooded by bot
please check the access log , see if anything out of ordinary
Hi @qtwrk – thanks for your support ! I checked the access log and it looks like it might be bot-related. Do you have any advice on how to tackle that?
could you please share me some of these logs ?
Yes, certainly. I should add that yesterday, we installed the BBQ Firewall plugin to see if we could cut down the size by blocking bad bots. This is the log from today, lscache folder was emptied yesterday, and is currently at 900MB.
173.252.107.6 – – [15/Aug/2024:04:10:32 +0200] “GET /sounds/audio_ensembles/pd_frag5-1.mp3%0D HTTP/1.1” 301 1094 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”52.230.152.238 – – [15/Aug/2024:04:21:06 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot)”52.230.152.222 – – [15/Aug/2024:04:22:46 +0200] “GET /htdocs_engl/ensembles/kaida/inhalt.html HTTP/1.1” 301 1056 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot)”216.244.66.226 – – [15/Aug/2024:04:35:46 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”57.141.5.24 – – [15/Aug/2024:05:10:57 +0200] “GET /index.php/about-pianolab HTTP/1.1” 301 1078 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”124.236.100.56 – – [15/Aug/2024:05:17:27 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0; WOW64; rv:56.0) Gecko/20100101 Firefox/56.0″23.229.104.2 – – [15/Aug/2024:05:50:47 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36″80.239.140.194 – – [15/Aug/2024:06:05:03 +0200] “GET /nl/ HTTP/1.0” 301 1016 “https://galleryoftones.com/nl/” “Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36″114.119.186.12 – – [15/Aug/2024:06:07:21 +0200] “GET /en/portfolio_category/jazz/page/2 HTTP/1.1” 301 1083 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″34.65.204.117 – – [15/Aug/2024:06:17:42 +0200] “GET /wp-content/plugins/wp-catcher/index.php HTTP/1.1” 301 1089 “www.google.com” “Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36″94.74.87.185 – – [15/Aug/2024:06:23:27 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″66.249.64.172 – – [15/Aug/2024:06:24:33 +0200] “GET /ads.txt HTTP/1.1” 301 1057 “-” “Mozilla/5.0 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)”180.102.110.174 – – [15/Aug/2024:06:34:35 +0200] “GET / HTTP/1.1” 301 1017 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”112.86.225.185 – – [15/Aug/2024:06:34:36 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”81.209.177.145 – – [15/Aug/2024:06:40:20 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “netEstate NE Crawler (+https://www.website-datenbank.de/)”203.2.64.59 – – [15/Aug/2024:06:47:34 +0200] “GET / HTTP/1.1” 301 1054 “-” “Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1″103.241.52.63 – – [15/Aug/2024:06:53:15 +0200] “GET /events/index.cfm/detail/1/dezeid/F4B8DDF7-C67F-AB3C-F45B26701E64D333/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″91.210.64.90 – – [15/Aug/2024:06:53:20 +0200] “GET /events/index.cfm/detail/1/dezeid/F4B8DDF7-C67F-AB3C-F45B26701E64D333/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″83.99.151.69 – – [15/Aug/2024:07:08:22 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GeedoProductSearch; +https://www.geedo.com/product-search.html) Chrome/79.0.3945.88 Safari/537.36″83.99.151.64 – – [15/Aug/2024:07:08:43 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GeedoProductSearch; +https://www.geedo.com/product-search.html) Chrome/79.0.3945.88 Safari/537.36″83.99.151.67 – – [15/Aug/2024:07:09:00 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GeedoProductSearch; +https://www.geedo.com/product-search.html) Chrome/79.0.3945.88 Safari/537.36″138.124.147.94 – – [15/Aug/2024:07:10:11 +0200] “GET /nl/words/104-henning-bolte-radio-on-demand HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″139.28.161.85 – – [15/Aug/2024:07:10:15 +0200] “GET /nl/words/104-henning-bolte-radio-on-demand HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″124.243.134.244 – – [15/Aug/2024:07:12:00 +0200] “GET /en/portfolio_category/events/page/3 HTTP/1.1” 301 1085 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″47.128.119.2 – – [15/Aug/2024:07:19:35 +0200] “GET /events?nav=Events HTTP/1.1” 301 1067 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″216.244.66.226 – – [15/Aug/2024:07:19:49 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”173.252.70.3 – – [15/Aug/2024:07:23:16 +0200] “GET / HTTP/1.1” 301 1050 “-” “meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)”47.128.110.236 – – [15/Aug/2024:07:25:12 +0200] “GET /robots.txt HTTP/1.1” 301 1023 “-” “Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])”164.92.78.0 – – [15/Aug/2024:07:59:44 +0200] “GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1” 301 1098 “-” “-“164.92.78.0 – – [15/Aug/2024:07:59:48 +0200] “GET /wp-2019.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:07:59:50 +0200] “GET /atomlib.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:07:59:53 +0200] “GET /css.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:07:59:55 +0200] “GET /log.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:07:59:58 +0200] “GET /index.php HTTP/1.1” 301 1059 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:00 +0200] “GET /mail.php HTTP/1.1” 301 1058 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:03 +0200] “GET /lufix.php HTTP/1.1” 301 1059 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:07 +0200] “GET /doc.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:11 +0200] “GET /bak.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:14 +0200] “GET /content.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:17 +0200] “GET /upfile.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:19 +0200] “GET /wp-conflg.php HTTP/1.1” 301 1063 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:22 +0200] “GET /bypass.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:25 +0200] “GET /wp-activate.php HTTP/1.1” 301 1065 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:28 +0200] “GET /updates.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:31 +0200] “GET /plugins.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:33 +0200] “GET /xmrlpc.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:36 +0200] “GET /ae.php HTTP/1.1” 301 1056 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:39 +0200] “GET /moon.php HTTP/1.1” 301 1058 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:42 +0200] “GET /blog.php HTTP/1.1” 301 1058 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:45 +0200] “GET /themes.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:00:57 +0200] “GET /ini.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:02 +0200] “GET /as.php HTTP/1.1” 301 1056 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:06 +0200] “GET /shell.php HTTP/1.1” 301 1059 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:07 +0200] “GET /ws.php HTTP/1.1” 301 1056 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:11 +0200] “GET /makeasmtp.php HTTP/1.1” 301 1063 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:14 +0200] “GET /wp-sigunq.php HTTP/1.1” 301 1063 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:17 +0200] “GET /wp-atom.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:21 +0200] “GET /fw.php HTTP/1.1” 301 1056 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:24 +0200] “GET /install.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:27 +0200] “GET /wp-login.php HTTP/1.1” 301 1062 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:30 +0200] “GET /wp-includes/Requests/about.php HTTP/1.1” 301 1080 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:33 +0200] “GET /wp-includes/style-engine/about.php HTTP/1.1” 301 1084 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:36 +0200] “GET /radio.php HTTP/1.1” 301 1059 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:39 +0200] “GET /chosen.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:42 +0200] “GET /simple.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:45 +0200] “GET /class.api.php HTTP/1.1” 301 1063 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:48 +0200] “GET /wp-head.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:50 +0200] “GET /file.php HTTP/1.1” 301 1058 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:54 +0200] “GET /assets/css/403.php HTTP/1.1” 301 1068 “-” “-“164.92.78.0 – – [15/Aug/2024:08:01:57 +0200] “GET /403.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:00 +0200] “GET /wp-content/plugins/core/include.php HTTP/1.1” 301 1085 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:04 +0200] “GET /.well-known/admin.php HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:08 +0200] “GET /mah.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:17 +0200] “GET /cong.php HTTP/1.1” 301 1058 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:20 +0200] “GET /wp-includes/js/tinymce/skins/lightgray/img/index.php?p= HTTP/1.1” 301 1105 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:21 +0200] “GET /wp-admin/includes/class_api.php HTTP/1.1” 301 1081 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:24 +0200] “GET /wp-mail.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:25 +0200] “GET /wp-content/themes/twentyfive/include.php HTTP/1.1” 301 1090 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:28 +0200] “GET /wp-content/themes/twentyseventeen/page/index.php?p= HTTP/1.1” 301 1101 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:32 +0200] “GET /wp-apxupx.php?apx=upx HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:35 +0200] “GET /wp-content/plugins/wp-apxupx.php?apx=upx HTTP/1.1” 301 1090 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:38 +0200] “GET /.tmb/class_api.php HTTP/1.1” 301 1068 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:41 +0200] “GET /cgi-bin/about.php HTTP/1.1” 301 1067 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:41 +0200] “GET /.well-known/acme-challenge/cloud.php HTTP/1.1” 301 1086 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:41 +0200] “GET /repeater.php HTTP/1.1” 301 1062 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:45 +0200] “GET /wp-admin/dropdown.php HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:47 +0200] “GET /wp-admin/css/index.php HTTP/1.1” 301 1072 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:49 +0200] “GET /dropdown.php HTTP/1.1” 301 1062 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:53 +0200] “GET /about.php HTTP/1.1” 301 1059 “-” “-“164.92.78.0 – – [15/Aug/2024:08:02:58 +0200] “GET /admin.php HTTP/1.1” 301 1059 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:01 +0200] “GET /.well-known/acme-challenge/cloud.php HTTP/1.1” 301 1086 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:01 +0200] “GET /wp-admin/images/index.php HTTP/1.1” 301 1075 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:03 +0200] “GET /wp-admin/css/colors/index.php HTTP/1.1” 301 1079 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:04 +0200] “GET /wp-content/themes/pridmag/db.php?u HTTP/1.1” 301 1084 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:05 +0200] “GET /wp-content/themes/seotheme/mar.php HTTP/1.1” 301 1084 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:08 +0200] “GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1” 301 1089 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:08 +0200] “GET /wp-content/themes/seotheme/db.php?u HTTP/1.1” 301 1085 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:09 +0200] “GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1” 301 1088 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:09 +0200] “GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1” 301 1087 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:12 +0200] “GET /.well-known/pki-validation/xmrlpc.php?p= HTTP/1.1” 301 1090 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:16 +0200] “GET /.well-known/acme-challenge/xmrlpc.php?p= HTTP/1.1” 301 1090 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:16 +0200] “GET /wp-admin/network/xmrlpc.php?p= HTTP/1.1” 301 1080 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:20 +0200] “GET /cgi-bin/xmrlpc.php?p= HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:21 +0200] “GET /wp-admin/user/xmrlpc.php?p= HTTP/1.1” 301 1077 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:25 +0200] “GET /wp-admin/images/xmrlpc.php?p= HTTP/1.1” 301 1079 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:29 +0200] “GET /ccx/index.php HTTP/1.1” 301 1063 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:33 +0200] “GET /wp-content/ccx/index.php HTTP/1.1” 301 1074 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:37 +0200] “GET /wp-admin/ccx/index.php HTTP/1.1” 301 1072 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:41 +0200] “GET /wp-content/index.php HTTP/1.1” 301 1070 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:41 +0200] “GET /wp-info.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:44 +0200] “GET /wp-blog.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:47 +0200] “GET /wp-admin/x.php?action=768776e296b6f286f26796e2a72607e2972647 HTTP/1.1” 301 1110 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:50 +0200] “GET /wp-admin/css/colors/blue/about.php HTTP/1.1” 301 1084 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:53 +0200] “GET /cjfuns.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:56 +0200] “GET /wp-config-sample.php HTTP/1.1” 301 1070 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:57 +0200] “GET /wp-content/plugins/index.php HTTP/1.1” 301 1078 “-” “-“164.92.78.0 – – [15/Aug/2024:08:03:57 +0200] “GET /worm0.PhP7 HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:00 +0200] “GET /wp.php HTTP/1.1” 301 1056 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:04 +0200] “GET /404.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:06 +0200] “GET /gawean.PhP7 HTTP/1.1” 301 1061 “-” “-“47.128.42.195 – – [15/Aug/2024:08:04:08 +0200] “GET /events/?thread=34&taal=2 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″164.92.78.0 – – [15/Aug/2024:08:04:09 +0200] “GET /.well-known/acme-challenge/license.php HTTP/1.1” 301 1088 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:10 +0200] “GET /wp-includes/blocks/table/int/tmpl/index.php HTTP/1.1” 301 1093 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:14 +0200] “GET /wp-admin/css/colors/coffee/index.php HTTP/1.1” 301 1086 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:15 +0200] “GET /wp-includes/themes.php HTTP/1.1” 301 1072 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:18 +0200] “GET /wp-includes/plugins.php HTTP/1.1” 301 1073 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:21 +0200] “GET /wp-content/plugins/revslider/includes/external/page/index.php HTTP/1.1” 301 1111 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:25 +0200] “GET /users.php HTTP/1.1” 301 1059 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:28 +0200] “GET /wp-admin/js/about.php HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:30 +0200] “GET /yanz.php HTTP/1.1” 301 1058 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:33 +0200] “GET /wp-content/plugins/Cache/Cache.php HTTP/1.1” 301 1084 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:36 +0200] “GET /alfanew.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:39 +0200] “GET /alfa-rex.php7 HTTP/1.1” 301 1063 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:42 +0200] “GET /alfa-rex.php HTTP/1.1” 301 1062 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:45 +0200] “GET /wp-includes/Requests/Text/admin.php HTTP/1.1” 301 1085 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:48 +0200] “GET /images/cloud.php HTTP/1.1” 301 1066 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:52 +0200] “GET /wp-admin/network/cloud.php HTTP/1.1” 301 1076 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:55 +0200] “GET /.well-known/pki-validation/cloud.php HTTP/1.1” 301 1086 “-” “-“164.92.78.0 – – [15/Aug/2024:08:04:58 +0200] “GET /wp-admin/images/about.php HTTP/1.1” 301 1075 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:01 +0200] “GET /wp-admin/css/about.php HTTP/1.1” 301 1072 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:04 +0200] “GET /wp-content/gallery/about.php HTTP/1.1” 301 1078 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:07 +0200] “GET /wp-includes/rest-api/about.php HTTP/1.1” 301 1080 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:10 +0200] “GET /wp-includes/SimplePie/about.php HTTP/1.1” 301 1081 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:13 +0200] “GET /wp-content/banners/about.php HTTP/1.1” 301 1078 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:16 +0200] “GET /wp-content/about.php HTTP/1.1” 301 1070 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:19 +0200] “GET /.well-known/about.php HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:22 +0200] “GET /wp-includes/Text/about.php HTTP/1.1” 301 1076 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:25 +0200] “GET /wp-includes/ID3/about.php HTTP/1.1” 301 1075 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:28 +0200] “GET /wp-includes/widgets/about.php HTTP/1.1” 301 1079 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:30 +0200] “GET /wp-includes/IXR/about.php HTTP/1.1” 301 1075 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:33 +0200] “GET /wp-admin/js/about.php HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:34 +0200] “GET /.well-known/pki-validation/about.php HTTP/1.1” 301 1086 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:36 +0200] “GET /wp-includes/pomo/about.php HTTP/1.1” 301 1076 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:39 +0200] “GET /wp-includes/block-patterns/about.php HTTP/1.1” 301 1086 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:42 +0200] “GET /wp-content/themes/about.php HTTP/1.1” 301 1077 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:45 +0200] “GET /wp-admin/includes/about.php HTTP/1.1” 301 1077 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:48 +0200] “GET /images/about.php HTTP/1.1” 301 1066 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:51 +0200] “GET /wp-includes/images/about.php HTTP/1.1” 301 1078 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:54 +0200] “GET /wp-includes/about.php HTTP/1.1” 301 1071 “-” “-“164.92.78.0 – – [15/Aug/2024:08:05:57 +0200] “GET /nf_tracking.php HTTP/1.1” 301 1065 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:03 +0200] “GET /wp-pano.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:07 +0200] “GET /defaul1.php HTTP/1.1” 301 1061 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:12 +0200] “GET /wp-content/wso.php HTTP/1.1” 301 1068 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:16 +0200] “GET /themes.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:18 +0200] “GET /xl2023.php HTTP/1.1” 301 1060 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:21 +0200] “GET /fm1.php HTTP/1.1” 301 1057 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:25 +0200] “GET /wso112233.php HTTP/1.1” 301 1063 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:28 +0200] “GET /shell20211028.php HTTP/1.1” 301 1067 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:31 +0200] “GET /.well-known/wso112233.php HTTP/1.1” 301 1075 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:35 +0200] “GET /wp-content/shell20211028.php HTTP/1.1” 301 1078 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:38 +0200] “GET /wp-content/themes/travel/issue.php HTTP/1.1” 301 1084 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:41 +0200] “GET /wp-content/themes/travelscape/json.php HTTP/1.1” 301 1088 “-” “-“164.92.78.0 – – [15/Aug/2024:08:06:45 +0200] “GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/admin.php HTTP/1.1” 301 1133 “-” “-“216.244.66.226 – – [15/Aug/2024:08:14:00 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”54.36.149.20 – – [15/Aug/2024:08:29:54 +0200] “GET /robots.txt HTTP/1.1” 301 1064 “-” “Mozilla/5.0 (compatible; AhrefsBot/7.0; +https://ahrefs.com/robot/)”124.243.151.30 – – [15/Aug/2024:09:30:29 +0200] “GET /en/portfolio_category/innovative/page/4 HTTP/1.1” 301 1089 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″111.119.216.158 – – [15/Aug/2024:09:32:38 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47″51.77.53.200 – – [15/Aug/2024:09:53:30 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36″209.35.89.238 – – [15/Aug/2024:10:09:08 +0200] “GET /courses?fbclid=PAZXh0bgNhZW0CMTEAAaYGmO5ALJ92hgdnU7PmqhNmjFFR_-7iA7BBVhzKPUKK8363AnZ7toMSyMA_aem_Yvlgo9O-cOqvxO3Wz1JIxw HTTP/1.1” 301 1169 “https://l.instagram.com/” “Mozilla/5.0 (iPhone; CPU iPhone OS 17_5_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/21F90 Instagram 343.0.0.23.93 (iPhone14,7; iOS 17_5_1; en_GB; en-GB; scale=3.00; 1170×2532; 629030903; IABMV/1)”166.108.231.224 – – [15/Aug/2024:10:44:15 +0200] “GET /de/punkt2010 HTTP/1.1” 301 1062 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36″114.119.134.123 – – [15/Aug/2024:10:54:17 +0200] “GET /robots.txt HTTP/1.1” 301 1064 “-” “Mozilla/5.0 (compatible;PetalBot;+https://webmaster.petalsearch.com/site/petalbot)”5.3.220.95 – – [15/Aug/2024:10:58:46 +0200] “GET /nl/ HTTP/1.0” 301 1016 “https://galleryoftones.com/nl/” “Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36”
And here are the log entries from august 13th, before we set up the BBQ firewall:
216.244.66.226 – – [13/Aug/2024:00:12:23 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”17.241.75.216 – – [13/Aug/2024:00:19:37 +0200] “GET /events/?thread=49&taal=3 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15 (Applebot/0.1; +https://www.apple.com/go/applebot)”49.0.206.198 – – [13/Aug/2024:00:20:35 +0200] “GET /en/portfolio_category/one-world/page/5 HTTP/1.1” 301 1088 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47″47.128.53.40 – – [13/Aug/2024:00:26:38 +0200] “GET /events/?thread=37&taal=3 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″5.58.32.31 – – [13/Aug/2024:00:28:06 +0200] “GET /nl/ HTTP/1.0” 301 1016 “https://galleryoftones.com/nl/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36″47.128.121.230 – – [13/Aug/2024:00:36:01 +0200] “GET /events/?thread=55&taal=1 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″124.243.133.22 – – [13/Aug/2024:00:54:40 +0200] “GET /events/index.cfm/detail/1/dezeid/3D53B005-EACA-EAB3-A3A933D2ED193AAE HTTP/1.1” 301 1118 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47″166.108.234.177 – – [13/Aug/2024:01:17:20 +0200] “GET /events/index.cfm/detail/1/dezeid/23FE0F2F-91DC-2E5F-5A8C409A2B657E37/nav/ HTTP/1.1” 301 1123 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″45.143.107.46 – – [13/Aug/2024:01:36:51 +0200] “GET /events/index.cfm/detail/1/dezeid/F4B8DDF7-C67F-AB3C-F45B26701E64D333/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″199.244.88.225 – – [13/Aug/2024:01:47:50 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36″114.119.189.248 – – [13/Aug/2024:01:51:25 +0200] “GET /events/index.cfm/detail/1/dezeid/36D39C5B-E952-ACFF-1DB566F42CEC10DD/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36″94.74.86.75 – – [13/Aug/2024:02:02:44 +0200] “GET /en/productions/page/2 HTTP/1.1” 301 1071 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″47.128.33.139 – – [13/Aug/2024:02:09:18 +0200] “GET /events/?thread=52&taal=3 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″52.230.152.85 – – [13/Aug/2024:02:13:48 +0200] “GET /robots.txt HTTP/1.1” 301 1023 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot)”47.128.45.156 – – [13/Aug/2024:02:32:55 +0200] “GET /events/?thread=28&taal=2 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″119.8.191.96 – – [13/Aug/2024:02:48:07 +0200] “GET /nl/portfolio_category/klassiek HTTP/1.1” 301 1080 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″154.16.192.226 – – [13/Aug/2024:02:50:03 +0200] “GET / HTTP/1.1” 301 1054 “-” “Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)”3.143.203.125 – – [13/Aug/2024:02:54:09 +0200] “GET / HTTP/1.1” 301 1050 “-” “-“3.143.203.125 – – [13/Aug/2024:02:55:03 +0200] “GET / HTTP/1.1” 301 1054 “-” “-“3.143.203.125 – – [13/Aug/2024:02:55:03 +0200] “GET / HTTP/1.1” 301 1054 “-” “-“217.30.192.251 – – [13/Aug/2024:02:55:12 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36″47.128.31.152 – – [13/Aug/2024:03:03:02 +0200] “GET /events?thread=43 HTTP/1.1” 301 1066 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″222.79.104.23 – – [13/Aug/2024:03:04:05 +0200] “GET / HTTP/1.1” 301 1054 “-” “Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1″66.220.149.37 – – [13/Aug/2024:03:25:42 +0200] “GET /robots.txt HTTP/1.1” 301 1064 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”69.171.230.18 – – [13/Aug/2024:03:25:52 +0200] “GET / HTTP/1.1” 301 1054 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”119.8.167.151 – – [13/Aug/2024:03:44:50 +0200] “GET /nl/pi/growing-music-ddw2019-6 HTTP/1.1” 301 1079 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36″185.220.101.8 – – [13/Aug/2024:03:52:52 +0200] “GET / HTTP/1.1” 301 1050 “https://galleryoftones.com” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1 Safari/605.1.15″85.209.11.117 – – [13/Aug/2024:04:09:22 +0200] “GET / HTTP/1.0” 301 1013 “https://galleryoftones.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Iron Safari/537.36″17.241.75.18 – – [13/Aug/2024:04:12:22 +0200] “GET /events/index.cfm/detail/1/dezeid/3797D7E3-BAEE-0FFA-BCC0269577CE436F/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15 (Applebot/0.1; +https://www.apple.com/go/applebot)”34.159.148.152 – – [13/Aug/2024:04:23:31 +0200] “GET /wp-content/plugins/wp-catcher/index.php HTTP/1.1” 301 1089 “www.google.com” “Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36″216.244.66.226 – – [13/Aug/2024:04:27:15 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”124.243.134.151 – – [13/Aug/2024:04:30:15 +0200] “GET /events/?taal=1&thread=28 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47″31.13.127.114 – – [13/Aug/2024:04:57:18 +0200] “GET / HTTP/1.1” 301 1054 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”190.92.200.71 – – [13/Aug/2024:05:04:16 +0200] “GET /en/portfolio_category/jazz/page/2 HTTP/1.1” 301 1083 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36″35.196.109.107 – – [13/Aug/2024:05:59:31 +0200] “GET /robots.txt HTTP/1.0” 301 1023 “-” “ZoominfoBot (zoominfobot at zoominfo dot com)”35.196.109.107 – – [13/Aug/2024:05:59:31 +0200] “GET / HTTP/1.0” 301 1013 “-” “ZoominfoBot (zoominfobot at zoominfo dot com)”94.74.93.90 – – [13/Aug/2024:06:00:57 +0200] “GET /nl/evenementen/page/16 HTTP/1.1” 301 1072 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″57.141.5.25 – – [13/Aug/2024:06:04:55 +0200] “GET /nl/stevko-busch/bio-stevko HTTP/1.1” 301 1080 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”216.244.66.226 – – [13/Aug/2024:06:09:40 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”35.196.109.107 – – [13/Aug/2024:06:32:07 +0200] “GET /robots.txt HTTP/1.0” 301 1027 “-” “ZoominfoBot (zoominfobot at zoominfo dot com)”35.196.109.107 – – [13/Aug/2024:06:32:07 +0200] “GET / HTTP/1.0” 301 1017 “-” “ZoominfoBot (zoominfobot at zoominfo dot com)”47.128.118.239 – – [13/Aug/2024:06:40:40 +0200] “GET /events/?thread=34&taal=3 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″173.252.83.39 – – [13/Aug/2024:06:44:47 +0200] “GET /kuenstler/kaufmannsolo/inhalt.html HTTP/1.1” 301 1088 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”66.249.64.172 – – [13/Aug/2024:06:54:06 +0200] “GET /ads.txt HTTP/1.1” 301 1057 “-” “Mozilla/5.0 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)”83.99.151.71 – – [13/Aug/2024:07:06:15 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GeedoProductSearch; +https://www.geedo.com/product-search.html) Chrome/79.0.3945.88 Safari/537.36″124.243.180.87 – – [13/Aug/2024:07:09:06 +0200] “GET /en/portfolio_category/events/page/14 HTTP/1.1” 301 1086 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36″17.241.219.237 – – [13/Aug/2024:07:09:54 +0200] “GET /artists/index.cfm?detail=1&dezeid=95A16EDE-C141-F70C-71DF23D5800E71BC&taal=3 HTTP/1.1” 301 1130 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15 (Applebot/0.1; +https://www.apple.com/go/applebot)”173.252.83.31 – – [13/Aug/2024:07:27:41 +0200] “GET /welkom-freelance-musici HTTP/1.1” 301 1077 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”124.243.132.85 – – [13/Aug/2024:08:28:26 +0200] “GET /events/index.cfm/detail/1/dezeid/23980F67-CAF9-6E34-59B0F0D0625A64C3/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″205.169.39.46 – – [13/Aug/2024:08:35:53 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36″121.229.156.94 – – [13/Aug/2024:08:36:52 +0200] “GET / HTTP/1.1” 301 1017 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”223.109.252.198 – – [13/Aug/2024:08:36:53 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”166.108.239.100 – – [13/Aug/2024:08:39:44 +0200] “GET /events/index.cfm/detail/1/dezeid/23FE0F2F-91DC-2E5F-5A8C409A2B657E37/nav/ HTTP/1.1” 301 1127 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″54.36.148.156 – – [13/Aug/2024:08:45:23 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; AhrefsBot/7.0; +https://ahrefs.com/robot/)”47.128.52.37 – – [13/Aug/2024:08:48:31 +0200] “GET /events/?thread=31&taal=2 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″47.128.127.92 – – [13/Aug/2024:09:01:49 +0200] “GET /events/?thread=25&taal=3 HTTP/1.1” 301 1074 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″47.128.44.149 – – [13/Aug/2024:09:09:19 +0200] “GET /events/?thread=52 HTTP/1.1” 301 1071 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″119.8.167.36 – – [13/Aug/2024:09:16:26 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36 Edg/101.0.1210.47″54.196.154.71 – – [13/Aug/2024:09:30:50 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36″52.80.60.159 – – [13/Aug/2024:10:09:35 +0200] “GET / HTTP/1.1” 301 1017 “-” “Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/548.43 (KHTML, like Gecko) Chrome/68.0.1075 Safari/537.36″47.128.22.53 – – [13/Aug/2024:10:19:58 +0200] “GET /events/?thread=25&taal=2 HTTP/1.1” 301 1078 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″47.128.38.134 – – [13/Aug/2024:10:21:50 +0200] “GET /events/?thread=55&taal=2 HTTP/1.1” 301 1078 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″216.244.66.226 – – [13/Aug/2024:10:24:34 +0200] “GET /robots.txt HTTP/1.1” 301 1064 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”190.92.209.192 – – [13/Aug/2024:10:33:04 +0200] “GET /en/portfolio_category/markus-stockhausen HTTP/1.1” 301 1090 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″188.166.54.99 – – [13/Aug/2024:10:50:52 +0200] “GET /wp-content/plugins/js-support-ticket/includes/js/responsivetable.js HTTP/1.1” 301 1117 “-” “Mozilla/5.0 (Linux; Android 5.1.1; SM-J111F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.90 Mobile Safari/537.36″66.249.64.174 – – [13/Aug/2024:10:53:55 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)”216.244.66.226 – – [13/Aug/2024:11:16:01 +0200] “GET /robots.txt HTTP/1.1” 301 1064 “-” “Mozilla/5.0 (compatible; DotBot/1.2; +https://opensiteexplorer.org/dotbot; [email protected])”52.230.152.3 – – [13/Aug/2024:11:17:41 +0200] “GET /robots.txt HTTP/1.1” 301 1023 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot)”119.13.100.93 – – [13/Aug/2024:11:29:48 +0200] “GET /events/index.cfm/detail/1/dezeid/239894CC-C5BF-AD0D-B1AC962D239B44CB/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36″110.238.105.210 – – [13/Aug/2024:11:41:09 +0200] “GET /events/index.cfm/detail/1/dezeid/23995720-0824-180E-36B2A978BEF17100/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″176.9.111.189 – – [13/Aug/2024:11:52:17 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Mozilla/5.0 (X11; Linux x86_64; rv:109)”176.9.111.189 – – [13/Aug/2024:11:52:24 +0200] “GET / HTTP/1.1” 301 1017 “-” “Mozilla/5.0 (X11; Linux x86_64; rv:109)”17.241.219.74 – – [13/Aug/2024:12:04:41 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15 (Applebot/0.1; +https://www.apple.com/go/applebot)”17.241.219.74 – – [13/Aug/2024:12:04:42 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15 (Applebot/0.1; +https://www.apple.com/go/applebot)”223.109.252.174 – – [13/Aug/2024:12:08:40 +0200] “GET / HTTP/1.1” 301 1017 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”121.229.156.110 – – [13/Aug/2024:12:08:41 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”43.130.3.122 – – [13/Aug/2024:12:12:36 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1″159.138.110.12 – – [13/Aug/2024:12:20:10 +0200] “GET /nl/portfolio_category/people HTTP/1.1” 301 1078 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″52.230.152.56 – – [13/Aug/2024:12:57:55 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot)”47.128.56.22 – – [13/Aug/2024:13:16:20 +0200] “GET /events/?thread=28 HTTP/1.1” 301 1071 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″47.128.19.103 – – [13/Aug/2024:13:20:06 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])”68.69.184.202 – – [13/Aug/2024:13:26:26 +0200] “GET / HTTP/1.1” 301 1050 “-” “SEOlyt/1.0 (https://seolyt.com)”4.213.0.22 – – [13/Aug/2024:13:27:22 +0200] “GET /wp-admin/css/ HTTP/1.1” 301 1063 “binance.com” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″4.213.0.22 – – [13/Aug/2024:13:27:29 +0200] “GET /.well-known/ HTTP/1.1” 301 1062 “binance.com” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″208.100.26.246 – – [13/Aug/2024:13:27:31 +0200] “GET / HTTP/1.1” 301 1013 “-” “Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36″4.213.0.22 – – [13/Aug/2024:13:27:48 +0200] “GET /sites/default/files/ HTTP/1.1” 301 1070 “binance.com” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″4.213.0.22 – – [13/Aug/2024:13:27:55 +0200] “GET /admin/controller/extension/extension/ HTTP/1.1” 301 1087 “binance.com” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″4.213.0.22 – – [13/Aug/2024:13:28:03 +0200] “GET /uploads/ HTTP/1.1” 301 1058 “binance.com” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″4.213.0.22 – – [13/Aug/2024:13:28:11 +0200] “GET /images/ HTTP/1.1” 301 1057 “binance.com” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″4.213.0.22 – – [13/Aug/2024:13:28:17 +0200] “GET /files/ HTTP/1.1” 301 1056 “binance.com” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″124.243.139.208 – – [13/Aug/2024:13:39:30 +0200] “GET /events/index.cfm/detail/1/dezeid/23A0B5DF-0FEF-FB3D-203F04F915CA260B/nav/Events HTTP/1.1” 301 1133 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″112.86.225.155 – – [13/Aug/2024:14:56:00 +0200] “GET / HTTP/1.1” 301 1017 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”112.86.225.180 – – [13/Aug/2024:14:56:01 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”190.92.216.195 – – [13/Aug/2024:14:58:48 +0200] “GET /nl/portfolio_category/jazz/page/8 HTTP/1.1” 301 1083 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″43.135.166.178 – – [13/Aug/2024:15:04:25 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1″52.182.155.43 – – [13/Aug/2024:15:22:50 +0200] “GET /wp-content/plugins/core/include.php HTTP/1.1” 301 1085 “-” “-“52.182.155.43 – – [13/Aug/2024:15:22:57 +0200] “GET /ws.php HTTP/1.1” 301 1056 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:07 +0200] “GET /404.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:13 +0200] “GET /wp.php HTTP/1.1” 301 1056 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:17 +0200] “GET /wp-head.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:21 +0200] “GET /wp-includes/wp-class.php HTTP/1.1” 301 1074 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:24 +0200] “GET /wp-content/themes/twenty/twenty.php HTTP/1.1” 301 1085 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:31 +0200] “GET /wp-content/plugins/press/wp-class.php HTTP/1.1” 301 1087 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:35 +0200] “GET /fm1.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:39 +0200] “GET /alfadheat.php HTTP/1.1” 301 1063 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:43 +0200] “GET /M1.php HTTP/1.1” 301 1056 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:52 +0200] “GET /admin.php HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:23:56 +0200] “GET /wp-admin/images/admin.php HTTP/1.1” 301 1075 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:02 +0200] “GET /alfanew.php7 HTTP/1.1” 301 1062 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:06 +0200] “GET /.well-known/wso112233.php HTTP/1.1” 301 1075 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:09 +0200] “GET /about.php HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:15 +0200] “GET /wp-content/shell20211028.php HTTP/1.1” 301 1078 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:19 +0200] “GET /repeater.php HTTP/1.1” 301 1062 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:26 +0200] “GET /wp-content/themes/finley/min.php HTTP/1.1” 301 1082 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:30 +0200] “GET /wso112233.php HTTP/1.1” 301 1063 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:34 +0200] “GET /dropdown.php HTTP/1.1” 301 1062 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:38 +0200] “GET /wp-admin/dropdown.php HTTP/1.1” 301 1071 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:42 +0200] “GET /shell20211028.php HTTP/1.1” 301 1067 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:46 +0200] “GET /wp-content/plugins/Cache/Cache.php HTTP/1.1” 301 1084 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:52 +0200] “GET /wp-includes/IXR/themes.php HTTP/1.1” 301 1076 “-” “-“52.182.155.43 – – [13/Aug/2024:15:24:59 +0200] “GET /.well-known/pki-validation/about.php HTTP/1.1” 301 1086 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:07 +0200] “GET /wp-header.php HTTP/1.1” 301 1063 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:11 +0200] “GET /alfanew.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:16 +0200] “GET /wp-includes/ID3/about.php HTTP/1.1” 301 1075 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:22 +0200] “GET /wp-2019.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:27 +0200] “GET /autoload_classmap.php HTTP/1.1” 301 1071 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:31 +0200] “GET /wp-includes/ID3/wp-login.php HTTP/1.1” 301 1078 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:33 +0200] “GET /wp-includes/SimplePie/plugins.php HTTP/1.1” 301 1083 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:40 +0200] “GET /wp-content/plugins/alfa-rex.php HTTP/1.1” 301 1081 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:44 +0200] “GET /wp-content/plugins/about.php HTTP/1.1” 301 1078 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:49 +0200] “GET /wp-content/themes/about.php HTTP/1.1” 301 1077 “-” “-“52.182.155.43 – – [13/Aug/2024:15:25:58 +0200] “GET /xleet.php HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:01 +0200] “GET /xl2023.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:05 +0200] “GET /xxl.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:09 +0200] “GET /x.php HTTP/1.1” 301 1055 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:12 +0200] “GET /xl.php HTTP/1.1” 301 1056 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:16 +0200] “GET /wp-admin/xl2023.php HTTP/1.1” 301 1069 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:21 +0200] “GET /wp-includes/xl2023.php HTTP/1.1” 301 1072 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:25 +0200] “GET /.well-known/acme-challenge/iR7SzrsOUEP.php HTTP/1.1” 301 1092 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:27 +0200] “GET /.well-known/pki-validation/iR7SzrsOUEP.php HTTP/1.1” 301 1092 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:31 +0200] “GET /.well-known/acme-challenge/xl2023.php HTTP/1.1” 301 1087 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:32 +0200] “GET /.well-known/pki-validation/xl2023.php HTTP/1.1” 301 1087 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:36 +0200] “GET /wp-admin/includes/iR7SzrsOUEP.php HTTP/1.1” 301 1083 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:40 +0200] “GET /wp-admin/maint/iR7SzrsOUEP.php HTTP/1.1” 301 1080 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:48 +0200] “GET /wp-content/upgrade/iR7SzrsOUEP.php HTTP/1.1” 301 1084 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:52 +0200] “GET /images/iR7SzrsOUEP.php HTTP/1.1” 301 1072 “-” “-“52.182.155.43 – – [13/Aug/2024:15:26:56 +0200] “GET /wp-admin/user/iR7SzrsOUEP.php HTTP/1.1” 301 1079 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:00 +0200] “GET /wp-admin/js/widgets/iR7SzrsOUEP.php HTTP/1.1” 301 1085 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:06 +0200] “GET /wp-admin/network/iR7SzrsOUEP.php HTTP/1.1” 301 1082 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:10 +0200] “GET /wp-admin/images/iR7SzrsOUEP.php HTTP/1.1” 301 1081 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:17 +0200] “GET /xleet-shell.php HTTP/1.1” 301 1065 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:20 +0200] “GET /admin-heade.php HTTP/1.1” 301 1065 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:24 +0200] “GET /cgi-bin/iR7SzrsOUEP.php HTTP/1.1” 301 1073 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:25 +0200] “GET /wp-content/xl2023.php HTTP/1.1” 301 1071 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:28 +0200] “GET /iR7SzrsOUEP.php HTTP/1.1” 301 1065 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:32 +0200] “GET /wp-content/uploads/xl2023.php HTTP/1.1” 301 1079 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:39 +0200] “GET /.well-known/about.php HTTP/1.1” 301 1071 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:43 +0200] “GET /.well-known/acme-challenge/cloud.php HTTP/1.1” 301 1086 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:44 +0200] “GET /admin.php?p= HTTP/1.1” 301 1062 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:47 +0200] “GET /adminfuns.php7 HTTP/1.1” 301 1064 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:50 +0200] “GET /as.php HTTP/1.1” 301 1056 “-” “-“52.182.155.43 – – [13/Aug/2024:15:27:54 +0200] “GET /avaa.php HTTP/1.1” 301 1058 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:03 +0200] “GET /bak.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:06 +0200] “GET /cgi-bin/about.php HTTP/1.1” 301 1067 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:08 +0200] “GET /cgi-bin/cloud.php HTTP/1.1” 301 1067 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:08 +0200] “GET /chosen.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:12 +0200] “GET /index.php HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:16 +0200] “GET /index.php?p=Market+Reports%2FNew+Jersey HTTP/1.1” 301 1089 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:23 +0200] “GET /inputs.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:27 +0200] “GET /install.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:30 +0200] “GET /log.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:34 +0200] “GET /log.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:35 +0200] “GET /makeasmtp.php?p= HTTP/1.1” 301 1066 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:42 +0200] “GET /moon.php HTTP/1.1” 301 1058 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:46 +0200] “GET /plugins.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:49 +0200] “GET /radio.php HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:28:57 +0200] “GET /search/label/PHP-Shells HTTP/1.1” 301 1073 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:00 +0200] “GET /shell.php HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:04 +0200] “GET /shell/AnonymousFox-shell?s=ninja+shells HTTP/1.1” 301 1089 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:07 +0200] “GET /simple.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:11 +0200] “GET /themes.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:14 +0200] “GET /wp-admin/css/colors/coffee/xmrlpc.php?p= HTTP/1.1” 301 1090 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:21 +0200] “GET /wp-admin/css/colors/index.php HTTP/1.1” 301 1079 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:23 +0200] “GET /wp-admin/css/index.php HTTP/1.1” 301 1072 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:25 +0200] “GET /wp-admin/css/index.php? HTTP/1.1” 301 1072 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:26 +0200] “GET /wp-admin/images/about.php HTTP/1.1” 301 1075 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:30 +0200] “GET /wp-admin/images/index.php HTTP/1.1” 301 1075 “-” “-“83.97.73.239 – – [13/Aug/2024:15:29:30 +0200] “GET / HTTP/1.0” 301 1013 “https://galleryoftones.com/” “Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.5414.120 Safari/537.36″52.182.155.43 – – [13/Aug/2024:15:29:32 +0200] “GET /wp-admin/includes/about.php HTTP/1.1” 301 1077 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:35 +0200] “GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1” 301 1081 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:42 +0200] “GET /wp-admin/js/about.php HTTP/1.1” 301 1071 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:45 +0200] “GET /wp-admin/js/widgets/about.php7 HTTP/1.1” 301 1080 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:49 +0200] “GET /wp-admin/user/xmrlpc.php?p= HTTP/1.1” 301 1077 “-” “-“52.182.155.43 – – [13/Aug/2024:15:29:55 +0200] “GET /wp-content/about.php HTTP/1.1” 301 1070 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:03 +0200] “GET /wp-content/languages/about.php HTTP/1.1” 301 1080 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:08 +0200] “GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1” 301 1087 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:12 +0200] “GET /wp-content/themes/seotheme/mar.php HTTP/1.1” 301 1084 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:18 +0200] “GET /wp-includes/Requests/Text/admin.php HTTP/1.1” 301 1085 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:21 +0200] “GET /wp-includes/Requests/about.php HTTP/1.1” 301 1080 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:26 +0200] “GET /wp-includes/about.php HTTP/1.1” 301 1071 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:30 +0200] “GET /wp-includes/block-patterns/about.php HTTP/1.1” 301 1086 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:33 +0200] “GET /wp-includes/blocks/about.php HTTP/1.1” 301 1078 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:37 +0200] “GET /wp-includes/customize/about.php HTTP/1.1” 301 1081 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:40 +0200] “GET /wp-includes/pomo/about.php HTTP/1.1” 301 1076 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:47 +0200] “GET /wp-includes/rest-api/about.php HTTP/1.1” 301 1080 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:50 +0200] “GET /wp-includes/widgets/about.php HTTP/1.1” 301 1079 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:54 +0200] “GET /wp-login.php HTTP/1.1” 301 1062 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:57 +0200] “GET /wp-mail.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:30:59 +0200] “GET /wp-trackback.php HTTP/1.1” 301 1066 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:01 +0200] “GET /wp.php?p= HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:04 +0200] “GET /classsmtps.php HTTP/1.1” 301 1064 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:08 +0200] “GET /wp-blog-header.php HTTP/1.1” 301 1068 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:10 +0200] “GET /wp-signup.php HTTP/1.1” 301 1063 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:10 +0200] “GET /wp-comments-post.php HTTP/1.1” 301 1070 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:11 +0200] “GET /wp-cron.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:11 +0200] “GET /wp-load.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:13 +0200] “GET /edit.php HTTP/1.1” 301 1058 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:17 +0200] “GET /wp-activate.php HTTP/1.1” 301 1065 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:21 +0200] “GET /post.php HTTP/1.1” 301 1058 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:27 +0200] “GET /css.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:30 +0200] “GET /mail.php HTTP/1.1” 301 1058 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:34 +0200] “GET /lufix.php HTTP/1.1” 301 1059 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:38 +0200] “GET /content.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:42 +0200] “GET /upfile.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:46 +0200] “GET /wp-conflg.php HTTP/1.1” 301 1063 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:50 +0200] “GET /bypass.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:54 +0200] “GET /updates.php HTTP/1.1” 301 1061 “-” “-“52.182.155.43 – – [13/Aug/2024:15:31:58 +0200] “GET /xmrlpc.php HTTP/1.1” 301 1060 “-” “-“52.182.155.43 – – [13/Aug/2024:15:32:06 +0200] “GET /ae.php HTTP/1.1” 301 1056 “-” “-“52.182.155.43 – – [13/Aug/2024:15:32:10 +0200] “GET /blog.php HTTP/1.1” 301 1058 “-” “-“52.182.155.43 – – [13/Aug/2024:15:32:14 +0200] “GET /ini.php HTTP/1.1” 301 1057 “-” “-“52.182.155.43 – – [13/Aug/2024:15:32:18 +0200] “GET /makeasmtp.php HTTP/1.1” 301 1063 “-” “-“52.182.155.43 – – [13/Aug/2024:15:32:20 +0200] “GET /wp-sigunq.php HTTP/1.1” 301 1063 “-” “-“52.182.155.43 – – [13/Aug/2024:15:32:24 +0200] “GET /fw.php HTTP/1.1” 301 1056 “-” “-“52.182.155.43 – – [13/Aug/2024:15:32:28 +0200] “GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1” 301 1095 “-” “-“114.119.187.36 – – [13/Aug/2024:15:32:48 +0200] “GET /nl/portfolio_category/piano HTTP/1.1” 301 1077 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″124.243.139.184 – – [13/Aug/2024:15:44:01 +0200] “GET /nl/portfolio_category/2009 HTTP/1.1” 301 1076 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″172.104.63.64 – – [13/Aug/2024:15:53:57 +0200] “GET /dup-installer/main.installer.php HTTP/1.1” 301 1082 “-” “-“3.124.204.51 – – [13/Aug/2024:15:55:33 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “zoombot (linkbot 1.0 https://suite.seozoom.it/bot.html)”45.32.73.39 – – [13/Aug/2024:16:16:13 +0200] “HEAD /wordpress HTTP/1.1” 301 218 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:15 +0200] “HEAD / HTTP/1.1” 301 209 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:16 +0200] “HEAD /wp HTTP/1.1” 301 211 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:17 +0200] “HEAD /bc HTTP/1.1” 301 211 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:18 +0200] “HEAD /bk HTTP/1.1” 301 211 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:20 +0200] “HEAD /backup HTTP/1.1” 301 215 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:21 +0200] “HEAD /old HTTP/1.1” 301 212 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:22 +0200] “HEAD /new HTTP/1.1” 301 212 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:23 +0200] “HEAD /main HTTP/1.1” 301 213 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″45.32.73.39 – – [13/Aug/2024:16:16:24 +0200] “HEAD /home HTTP/1.1” 301 213 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36″123.160.223.72 – – [13/Aug/2024:16:19:34 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36″123.160.223.74 – – [13/Aug/2024:16:19:38 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36″111.7.96.173 – – [13/Aug/2024:16:21:09 +0200] “GET / HTTP/1.1” 301 1054 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36″111.7.96.173 – – [13/Aug/2024:16:21:17 +0200] “GET / HTTP/1.1” 301 1054 “-” “Mozilla/5.0 (Macintosh; Intel Mac OS X 11_0_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36″57.141.5.13 – – [13/Aug/2024:16:29:11 +0200] “GET /en/punkt2010 HTTP/1.1” 301 1066 “-” “meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)”69.171.230.19 – – [13/Aug/2024:16:32:46 +0200] “GET /nl/punkt2010?showall=&start=3 HTTP/1.1” 301 1083 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”47.128.23.51 – – [13/Aug/2024:16:50:37 +0200] “GET /events/?thread=34 HTTP/1.1” 301 1071 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″124.243.191.73 – – [13/Aug/2024:16:52:01 +0200] “GET /en/events/page/13 HTTP/1.1” 301 1067 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″114.119.185.59 – – [13/Aug/2024:17:03:24 +0200] “GET /en/artists/fugara HTTP/1.1” 301 1067 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″57.141.5.10 – – [13/Aug/2024:17:05:11 +0200] “GET / HTTP/1.1” 301 1050 “-” “meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)”92.226.2.197 – – [13/Aug/2024:17:16:13 +0200] “GET / HTTP/1.1” 301 1050 “https://www.google.com/” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36″173.252.83.12 – – [13/Aug/2024:17:17:06 +0200] “GET /en/program/pianolabamsterdam/2012 HTTP/1.1” 301 1083 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”124.243.182.11 – – [13/Aug/2024:17:26:09 +0200] “GET /nl/portfolio_category/daan HTTP/1.1” 301 1076 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″65.21.113.245 – – [13/Aug/2024:17:28:04 +0200] “GET /robots.txt HTTP/1.1” 301 1064 “-” “Mozilla/5.0 (compatible; AwarioBot/1.0; +https://awario.com/bots.html)”65.21.113.245 – – [13/Aug/2024:17:28:05 +0200] “GET /nl/journal/reflections HTTP/1.1” 301 1076 “-” “Mozilla/5.0 (compatible; AwarioBot/1.0; +https://awario.com/bots.html)”65.21.113.245 – – [13/Aug/2024:17:28:12 +0200] “GET /nl/punkt2010?showall=&start=3 HTTP/1.1” 301 1083 “-” “Mozilla/5.0 (compatible; AwarioBot/1.0; +https://awario.com/bots.html)”74.235.198.210 – – [13/Aug/2024:17:29:28 +0200] “GET //wp-content/plugins/fix/up.php HTTP/1.1” 301 1080 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36″185.246.188.73 – – [13/Aug/2024:17:32:15 +0200] “GET / HTTP/1.1” 301 1050 “galleryoftones.com” “Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0; Touch; MASMJS)”47.128.118.121 – – [13/Aug/2024:17:32:53 +0200] “GET /events/?thread=55 HTTP/1.1” 301 1071 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″47.128.96.218 – – [13/Aug/2024:17:34:46 +0200] “GET /events/?thread=43 HTTP/1.1” 301 1071 “-” “Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36″34.155.80.232 – – [13/Aug/2024:17:35:01 +0200] “GET /wp-content/plugins/wp-catcher/index.php HTTP/1.1” 301 1089 “www.google.com” “Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36″57.141.5.4 – – [13/Aug/2024:17:35:04 +0200] “GET /en/pi/fugara-stockhausen-kemenade-busch-ounaskari/ HTTP/1.1” 301 1100 “-” “meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)”119.13.103.3 – – [13/Aug/2024:17:37:23 +0200] “GET /events/index.cfm?detail=1&dezeid=908A294D-0BE4-261D-9548568002223813&taal=3 HTTP/1.1” 301 1125 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″173.252.83.14 – – [13/Aug/2024:17:47:35 +0200] “GET /index.php/program-winter-10/vr-22-jan-10 HTTP/1.1” 301 1094 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”124.243.132.41 – – [13/Aug/2024:18:15:33 +0200] “GET /nl/portfolio_category/events/page/14 HTTP/1.1” 301 1086 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″166.108.202.51 – – [13/Aug/2024:18:44:44 +0200] “GET /nl/portfolio_category/coach HTTP/1.1” 301 1077 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36″66.249.64.173 – – [13/Aug/2024:18:53:10 +0200] “GET /robots.txt HTTP/1.1” 301 1060 “-” “Mozilla/5.0 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)”66.249.64.174 – – [13/Aug/2024:18:53:11 +0200] “GET /nl/ HTTP/1.1” 301 1053 “-” “Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.6533.99 Mobile Safari/537.36 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)”213.202.233.34 – – [13/Aug/2024:18:56:56 +0200] “GET /simple.php HTTP/1.1” 301 1060 “www.google.com” “Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36″66.249.64.173 – – [13/Aug/2024:19:07:51 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.6533.99 Mobile Safari/537.36 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)”166.108.225.178 – – [13/Aug/2024:19:32:15 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″166.108.225.178 – – [13/Aug/2024:19:32:22 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″190.92.218.60 – – [13/Aug/2024:19:32:30 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″124.243.133.41 – – [13/Aug/2024:19:32:39 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″124.243.139.125 – – [13/Aug/2024:19:32:48 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″110.238.110.147 – – [13/Aug/2024:19:32:54 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″124.243.148.22 – – [13/Aug/2024:19:33:02 +0200] “GET /en/portfolio_category/pianolab-festival/page/3 HTTP/1.1” 301 1096 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″112.86.225.229 – – [13/Aug/2024:19:37:27 +0200] “GET / HTTP/1.1” 301 1017 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”112.86.225.188 – – [13/Aug/2024:19:37:27 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”206.189.105.125 – – [13/Aug/2024:20:10:39 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36″81.163.253.140 – – [13/Aug/2024:20:25:31 +0200] “GET /nl/ HTTP/1.0” 301 1016 “https://galleryoftones.com/nl/” “Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Safari/537.36″119.13.110.188 – – [13/Aug/2024:20:30:49 +0200] “GET /en/portfolio_category/classic/page/2 HTTP/1.1” 301 1086 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36″110.238.108.232 – – [13/Aug/2024:20:46:50 +0200] “GET /nl/portfolio_category/radek-stawarz HTTP/1.1” 301 1085 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36″112.86.225.201 – – [13/Aug/2024:20:50:38 +0200] “GET / HTTP/1.1” 301 1017 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”223.109.252.239 – – [13/Aug/2024:20:50:38 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”59.38.65.38 – – [13/Aug/2024:21:03:08 +0200] “GET / HTTP/1.1” 301 1050 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3641.151 Safari/537.36″69.171.230.10 – – [13/Aug/2024:21:03:50 +0200] “GET /nl/punkt2010 HTTP/1.1” 301 1066 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”57.141.5.11 – – [13/Aug/2024:21:04:13 +0200] “GET /de/program/pianolabamsterdam/2011 HTTP/1.1” 301 1087 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”52.214.40.206 – – [13/Aug/2024:21:28:35 +0200] “GET /robots.txt HTTP/1.0” 301 1027 “https://www.galleryoftones.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36″52.214.40.206 – – [13/Aug/2024:21:29:23 +0200] “GET /robots.txt HTTP/1.0” 301 1023 “https://galleryoftones.com/events/index.cfm/detail/1/dezeid/F4B8DDF7-C67F-AB3C-F45B26701E64D333/nav/Events” “Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36″124.243.144.138 – – [13/Aug/2024:21:36:09 +0200] “GET /nl/lessons/david-williams-mitchell-1-ornamentatie HTTP/1.1” 301 1099 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36″52.230.152.48 – – [13/Aug/2024:21:47:05 +0200] “GET /robots.txt HTTP/1.1” 301 1023 “-” “Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.0; +https://openai.com/gptbot)”35.198.103.25 – – [13/Aug/2024:21:55:21 +0200] “GET /wp-content/plugins/wp-catcher/index.php HTTP/1.1” 301 1089 “www.google.com” “Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36″152.58.90.36 – – [13/Aug/2024:22:12:16 +0200] “GET /nl/ HTTP/1.0” 301 1016 “https://galleryoftones.com/nl/” “Mozilla/5.0 (Windows NT 10.0.0; Win64; x64; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.60 Chrome/124.0.6367.60 Not-A.Brand/99 Safari/537.36″89.110.87.170 – – [13/Aug/2024:22:23:39 +0200] “GET /privet-mir/ HTTP/1.1” 301 1061 “-” “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)”89.110.87.170 – – [13/Aug/2024:22:23:39 +0200] “GET /hello-world/ HTTP/1.1” 301 1062 “-” “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)”66.249.64.174 – – [13/Aug/2024:23:09:34 +0200] “GET /events/ HTTP/1.1” 301 1057 “-” “Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.6533.99 Mobile Safari/537.36 (compatible; Googlebot/2.1; +https://www.google.com/bot.html)”66.220.149.1 – – [13/Aug/2024:23:15:19 +0200] “GET /welkom-freelance-musici HTTP/1.1” 301 1077 “-” “facebookexternalhit/1.1 (+https://www.facebook.com/externalhit_uatext.php)”52.182.191.118 – – [13/Aug/2024:23:17:17 +0200] “GET /wp-content/plugins/core/include.php HTTP/1.1” 301 1085 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:22 +0200] “GET /ws.php HTTP/1.1” 301 1056 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:26 +0200] “GET /404.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:30 +0200] “GET /wp.php HTTP/1.1” 301 1056 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:34 +0200] “GET /wp-head.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:38 +0200] “GET /wp-includes/wp-class.php HTTP/1.1” 301 1074 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:42 +0200] “GET /wp-content/themes/twenty/twenty.php HTTP/1.1” 301 1085 “-” “-“223.109.252.157 – – [13/Aug/2024:23:17:42 +0200] “GET / HTTP/1.1” 301 1017 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”121.229.156.84 – – [13/Aug/2024:23:17:43 +0200] “GET /robots.txt HTTP/1.1” 301 1027 “-” “Sogou web spider/4.0(+https://www.sogou.com/docs/help/webmasters.htm#07)”52.182.191.118 – – [13/Aug/2024:23:17:45 +0200] “GET /wp-content/plugins/press/wp-class.php HTTP/1.1” 301 1087 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:49 +0200] “GET /fm1.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:53 +0200] “GET /alfadheat.php HTTP/1.1” 301 1063 “-” “-“52.182.191.118 – – [13/Aug/2024:23:17:56 +0200] “GET /M1.php HTTP/1.1” 301 1056 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:00 +0200] “GET /admin.php HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:04 +0200] “GET /wp-admin/images/admin.php HTTP/1.1” 301 1075 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:07 +0200] “GET /alfanew.php7 HTTP/1.1” 301 1062 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:10 +0200] “GET /.well-known/wso112233.php HTTP/1.1” 301 1075 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:13 +0200] “GET /about.php HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:16 +0200] “GET /wp-content/shell20211028.php HTTP/1.1” 301 1078 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:19 +0200] “GET /repeater.php HTTP/1.1” 301 1062 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:22 +0200] “GET /wp-content/themes/finley/min.php HTTP/1.1” 301 1082 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:25 +0200] “GET /wso112233.php HTTP/1.1” 301 1063 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:28 +0200] “GET /dropdown.php HTTP/1.1” 301 1062 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:31 +0200] “GET /wp-admin/dropdown.php HTTP/1.1” 301 1071 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:33 +0200] “GET /shell20211028.php HTTP/1.1” 301 1067 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:36 +0200] “GET /wp-content/plugins/Cache/Cache.php HTTP/1.1” 301 1084 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:39 +0200] “GET /wp-includes/IXR/themes.php HTTP/1.1” 301 1076 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:42 +0200] “GET /.well-known/pki-validation/about.php HTTP/1.1” 301 1086 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:44 +0200] “GET /wp-header.php HTTP/1.1” 301 1063 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:48 +0200] “GET /alfanew.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:51 +0200] “GET /wp-includes/ID3/about.php HTTP/1.1” 301 1075 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:53 +0200] “GET /wp-2019.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:56 +0200] “GET /autoload_classmap.php HTTP/1.1” 301 1071 “-” “-“52.182.191.118 – – [13/Aug/2024:23:18:59 +0200] “GET /wp-includes/ID3/wp-login.php HTTP/1.1” 301 1078 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:01 +0200] “GET /wp-includes/SimplePie/plugins.php HTTP/1.1” 301 1083 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:04 +0200] “GET /wp-content/plugins/alfa-rex.php HTTP/1.1” 301 1081 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:07 +0200] “GET /wp-content/plugins/about.php HTTP/1.1” 301 1078 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:09 +0200] “GET /wp-content/themes/about.php HTTP/1.1” 301 1077 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:13 +0200] “GET /xleet.php HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:15 +0200] “GET /xl2023.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:18 +0200] “GET /xxl.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:21 +0200] “GET /x.php HTTP/1.1” 301 1055 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:24 +0200] “GET /xl.php HTTP/1.1” 301 1056 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:27 +0200] “GET /wp-admin/xl2023.php HTTP/1.1” 301 1069 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:30 +0200] “GET /wp-includes/xl2023.php HTTP/1.1” 301 1072 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:32 +0200] “GET /.well-known/acme-challenge/iR7SzrsOUEP.php HTTP/1.1” 301 1092 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:33 +0200] “GET /.well-known/pki-validation/iR7SzrsOUEP.php HTTP/1.1” 301 1092 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:35 +0200] “GET /.well-known/acme-challenge/xl2023.php HTTP/1.1” 301 1087 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:36 +0200] “GET /.well-known/pki-validation/xl2023.php HTTP/1.1” 301 1087 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:38 +0200] “GET /wp-admin/includes/iR7SzrsOUEP.php HTTP/1.1” 301 1083 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:41 +0200] “GET /wp-admin/maint/iR7SzrsOUEP.php HTTP/1.1” 301 1080 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:44 +0200] “GET /wp-content/upgrade/iR7SzrsOUEP.php HTTP/1.1” 301 1084 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:46 +0200] “GET /images/iR7SzrsOUEP.php HTTP/1.1” 301 1072 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:49 +0200] “GET /wp-admin/user/iR7SzrsOUEP.php HTTP/1.1” 301 1079 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:51 +0200] “GET /wp-admin/js/widgets/iR7SzrsOUEP.php HTTP/1.1” 301 1085 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:54 +0200] “GET /wp-admin/network/iR7SzrsOUEP.php HTTP/1.1” 301 1082 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:57 +0200] “GET /wp-admin/images/iR7SzrsOUEP.php HTTP/1.1” 301 1081 “-” “-“52.182.191.118 – – [13/Aug/2024:23:19:59 +0200] “GET /xleet-shell.php HTTP/1.1” 301 1065 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:02 +0200] “GET /admin-heade.php HTTP/1.1” 301 1065 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:05 +0200] “GET /cgi-bin/iR7SzrsOUEP.php HTTP/1.1” 301 1073 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:05 +0200] “GET /wp-content/xl2023.php HTTP/1.1” 301 1071 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:08 +0200] “GET /iR7SzrsOUEP.php HTTP/1.1” 301 1065 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:10 +0200] “GET /wp-content/uploads/xl2023.php HTTP/1.1” 301 1079 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:13 +0200] “GET /.well-known/about.php HTTP/1.1” 301 1071 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:15 +0200] “GET /.well-known/acme-challenge/cloud.php HTTP/1.1” 301 1086 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:16 +0200] “GET /admin.php?p= HTTP/1.1” 301 1062 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:18 +0200] “GET /adminfuns.php7 HTTP/1.1” 301 1064 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:20 +0200] “GET /as.php HTTP/1.1” 301 1056 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:23 +0200] “GET /avaa.php HTTP/1.1” 301 1058 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:25 +0200] “GET /bak.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:28 +0200] “GET /cgi-bin/about.php HTTP/1.1” 301 1067 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:28 +0200] “GET /cgi-bin/cloud.php HTTP/1.1” 301 1067 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:29 +0200] “GET /chosen.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:31 +0200] “GET /index.php HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:34 +0200] “GET /index.php?p=Market+Reports%2FNew+Jersey HTTP/1.1” 301 1089 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:38 +0200] “GET /inputs.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:40 +0200] “GET /install.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:43 +0200] “GET /log.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:46 +0200] “GET /log.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:46 +0200] “GET /makeasmtp.php?p= HTTP/1.1” 301 1066 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:50 +0200] “GET /moon.php HTTP/1.1” 301 1058 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:53 +0200] “GET /plugins.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:55 +0200] “GET /radio.php HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:20:58 +0200] “GET /search/label/PHP-Shells HTTP/1.1” 301 1073 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:00 +0200] “GET /shell.php HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:04 +0200] “GET /shell/AnonymousFox-shell?s=ninja+shells HTTP/1.1” 301 1089 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:06 +0200] “GET /simple.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:09 +0200] “GET /themes.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:12 +0200] “GET /wp-admin/css/colors/coffee/xmrlpc.php?p= HTTP/1.1” 301 1090 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:15 +0200] “GET /wp-admin/css/colors/index.php HTTP/1.1” 301 1079 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:17 +0200] “GET /wp-admin/css/index.php HTTP/1.1” 301 1072 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:18 +0200] “GET /wp-admin/css/index.php? HTTP/1.1” 301 1072 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:18 +0200] “GET /wp-admin/images/about.php HTTP/1.1” 301 1075 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:21 +0200] “GET /wp-admin/images/index.php HTTP/1.1” 301 1075 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:23 +0200] “GET /wp-admin/includes/about.php HTTP/1.1” 301 1077 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:25 +0200] “GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1” 301 1081 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:29 +0200] “GET /wp-admin/js/about.php HTTP/1.1” 301 1071 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:32 +0200] “GET /wp-admin/js/widgets/about.php7 HTTP/1.1” 301 1080 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:37 +0200] “GET /wp-admin/user/xmrlpc.php?p= HTTP/1.1” 301 1077 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:41 +0200] “GET /wp-content/about.php HTTP/1.1” 301 1070 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:44 +0200] “GET /wp-content/languages/about.php HTTP/1.1” 301 1080 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:46 +0200] “GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1” 301 1087 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:49 +0200] “GET /wp-content/themes/seotheme/mar.php HTTP/1.1” 301 1084 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:52 +0200] “GET /wp-includes/Requests/Text/admin.php HTTP/1.1” 301 1085 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:55 +0200] “GET /wp-includes/Requests/about.php HTTP/1.1” 301 1080 “-” “-“52.182.191.118 – – [13/Aug/2024:23:21:57 +0200] “GET /wp-includes/about.php HTTP/1.1” 301 1071 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:00 +0200] “GET /wp-includes/block-patterns/about.php HTTP/1.1” 301 1086 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:05 +0200] “GET /wp-includes/blocks/about.php HTTP/1.1” 301 1078 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:07 +0200] “GET /wp-includes/customize/about.php HTTP/1.1” 301 1081 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:10 +0200] “GET /wp-includes/pomo/about.php HTTP/1.1” 301 1076 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:13 +0200] “GET /wp-includes/rest-api/about.php HTTP/1.1” 301 1080 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:15 +0200] “GET /wp-includes/widgets/about.php HTTP/1.1” 301 1079 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:18 +0200] “GET /wp-login.php HTTP/1.1” 301 1062 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:20 +0200] “GET /wp-mail.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:21 +0200] “GET /wp-trackback.php HTTP/1.1” 301 1066 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:22 +0200] “GET /wp.php?p= HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:24 +0200] “GET /classsmtps.php HTTP/1.1” 301 1064 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:27 +0200] “GET /wp-blog-header.php HTTP/1.1” 301 1068 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:29 +0200] “GET /wp-signup.php HTTP/1.1” 301 1063 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:29 +0200] “GET /wp-comments-post.php HTTP/1.1” 301 1070 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:29 +0200] “GET /wp-cron.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:30 +0200] “GET /wp-load.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:31 +0200] “GET /edit.php HTTP/1.1” 301 1058 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:34 +0200] “GET /wp-activate.php HTTP/1.1” 301 1065 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:37 +0200] “GET /post.php HTTP/1.1” 301 1058 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:39 +0200] “GET /css.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:42 +0200] “GET /mail.php HTTP/1.1” 301 1058 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:45 +0200] “GET /lufix.php HTTP/1.1” 301 1059 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:48 +0200] “GET /content.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:51 +0200] “GET /upfile.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:53 +0200] “GET /wp-conflg.php HTTP/1.1” 301 1063 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:56 +0200] “GET /bypass.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:22:59 +0200] “GET /updates.php HTTP/1.1” 301 1061 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:02 +0200] “GET /xmrlpc.php HTTP/1.1” 301 1060 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:05 +0200] “GET /ae.php HTTP/1.1” 301 1056 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:08 +0200] “GET /blog.php HTTP/1.1” 301 1058 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:11 +0200] “GET /ini.php HTTP/1.1” 301 1057 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:14 +0200] “GET /makeasmtp.php HTTP/1.1” 301 1063 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:14 +0200] “GET /wp-sigunq.php HTTP/1.1” 301 1063 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:17 +0200] “GET /fw.php HTTP/1.1” 301 1056 “-” “-“52.182.191.118 – – [13/Aug/2024:23:23:20 +0200] “GET /wp-content/plugins/google-seo-rank/module.php HTTP/1.1” 301 1095 “-” “-“54.36.148.215 – – [13/Aug/2024:23:36:28 +0200] “GET /robots.txt HTTP/1.1” 301 1064 “-” “Mozilla/5.0 (compatible; AhrefsBot/7.0; +https://ahrefs.com/robot/)”119.42.145.178 – – [13/Aug/2024:23:38:32 +0200] “GET /Admin/lib/H-ui.admin/lib/webuploader/0.1.5/server/preview.php HTTP/1.1” 301 1115 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″119.42.145.178 – – [13/Aug/2024:23:38:45 +0200] “GET /Public/admin/Widget/webuploader/0.1.5/server/preview.php HTTP/1.1” 301 1110 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36″119.42.145.178 – – [13/Aug/2024:23:38:52 +0200] “GET /cadmin/webUploader/preview.php HTTP/1.1” 301 1084 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36”
it would be great when you post log to someone that you can retain the log format instead of concatenate it together
you can try set these user agent to no cache
GPTBot
netEstate
Bytespider
meta-externalagentI didn’t concatenate it. But I understand it’s impossible to read like this, sorry about that. I posted them here, so you can download them: download log files.
I’ve added your suggestion to the agent no cache list. I will post my findings later. Thanks for your help so far!
Hi @qtwrk – at first it looked to have seriously decreased in size, but I checked this morning, and it’s back at 3.1GB again…
that means you may need to further breakdown the access log , did you enable
cache login user
? that could also generate a lot of cache if you have lots usersYes, cache login user is active. But that’s kind of the point, as the important part of the site is offering content to paying members.
For the test, I have now disabled it, and emptied the lscache folder. Let’s see what difference this makes.I checked the size of the lscache folder. It’s at 4.8GB. So disabling the login user cache has not made a difference.
In the access log for today I do see a large number of requests from a single IP address. But how can I see whether that’s a regular visitor or a bot, and if it is a bot, how should I block it in the LS cache settings?this usually can be determined by the user agent , what was the UA this IP gives ?
“Unknown”…
you mean it literally gives
Unknown
word in access log ?then go to Cache -> Exclude -> Do not cache user agent, put
Unknown
into itYes, that’s exactly what I mean. I’ve added “Unknown” and emptied the lscache folder again. Let’s see what happens now…
- You must be logged in to reply to this topic.