2025-12-08T10:38:10.0009+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:10:38:10 +0000] "GET / HTTP/1.1" 405 178 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
2025-12-08T11:00:12.681614+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:11:00:12 +0000] "GET / HTTP/1.1" 405 178 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
2025-12-08T15:34:46.335335+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:46 +0000] "GET /atomlib.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:46.703993+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:46 +0000] "GET /css.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:47.051163+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:47 +0000] "GET /simple.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:47.48071+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:47 +0000] "GET /wp-config.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:47.826107+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:47 +0000] "GET /bypass.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:48.182825+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:48 +0000] "GET /shell.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:48.644444+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:48 +0000] "GET /ws.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:48.99119+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:48 +0000] "GET /wso112233.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:50.084919+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:50 +0000] "GET /alfanew.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:50.594663+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:50 +0000] "GET /fw.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:34:52.571602+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:34:52 +0000] "GET /wp-login.php HTTP/1.1" 404 232 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
2025-12-08T15:53:02.313+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:53:02 +0000] "GET /wp-info.php HTTP/1.1" 404 232 "-" "python-requests/2.27.1"
2025-12-08T15:53:03.576286+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:53:03 +0000] "GET /alfanew.php7 HTTP/1.1" 404 232 "-" "python-requests/2.27.1"
2025-12-08T15:58:38.363911+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:15:58:38 +0000] "GET /robots.txt HTTP/1.1" 404 232 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36; compatible; OAI-SearchBot/1.3; robots.txt; +https://openai.com/searchbot"
2025-12-08T16:53:28.716964+00:00 host app[web.1] 172.17.128.1 - - [08/Dec/2025:16:53:28 +0000] "GET / HTTP/1.1" 405 178 "-" "Mozilla/5.0 (compatible; CMS-Checker/1.0; +https://example.com)"
2025-12-09T00:18:26.670185+00:00 host app[web.1] 172.17.128.1 - - [09/Dec/2025:00:18:26 +0000] "GET /robots.txt HTTP/1.1" 404 232 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
2025-12-09T00:18:26.725293+00:00 host app[web.1] 172.17.128.1 - - [09/Dec/2025:00:18:26 +0000] "GET / HTTP/1.1" 405 178 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"
2025-12-09T00:56:34.960158+00:00 host app[web.1] 172.17.128.1 - - [09/Dec/2025:00:56:34 +0000] "GET /favicon.ico HTTP/1.1" 404 232 "https://pagerduty-slack-app-prod.herokuapp.com/" "Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0"
2025-12-09T04:33:37.371963+00:00 host app[web.1] 172.17.128.1 - - [09/Dec/2025:04:33:37 +0000] "GET / HTTP/1.1" 405 178 "-" "-"
2025-12-09T04:33:38.451937+00:00 host app[web.1] 172.17.128.1 - - [09/Dec/2025:04:33:38 +0000] "GET / HTTP/1.1" 405 178 "-" "-"