45.79.120.183 - - [19/Sep/2025:00:12:53 -0600] "\x16\x03\x01" 400 488 "-" "-"
45.79.120.183 - - [19/Sep/2025:00:13:08 -0600] "GET / HTTP/1.1" 200 7176 "-" "Mozilla/5.0 (Knoppix; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0"
45.79.120.183 - - [19/Sep/2025:00:13:35 -0600] "GET / HTTP/1.0" 400 624 "-" "-"
136.143.176.60 - - [19/Sep/2025:00:19:55 -0600] "GET /PCI-test/trademarks.csv HTTP/1.1" 200 36737933 "-" "Zoho_Analytics"
43.135.115.233 - - [19/Sep/2025:00:21:49 -0600] "GET / HTTP/1.1" 200 3440 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
198.235.24.117 - - [19/Sep/2025:00:23:09 -0600] "GET / HTTP/1.1" 200 3421 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
182.8.227.116 - - [19/Sep/2025:00:32:10 -0600] "GET /.vscode/sftp.json HTTP/1.1" 200 558 "-" "python-requests/2.31.0"
182.8.227.116 - - [19/Sep/2025:00:32:15 -0600] "GET /0x00000.php HTTP/1.1" 404 498 "-" "python-requests/2.31.0"
182.8.227.116 - - [19/Sep/2025:00:32:16 -0600] "GET /conv.php HTTP/1.1" 404 498 "-" "python-requests/2.31.0"
104.28.116.107 - - [19/Sep/2025:00:34:34 -0600] "GET /imagenesAptusLegal/arochi/LogosArochi/MAR-127339.png HTTP/1.1" 200 159401 "-" "Mozilla/5.0"
104.28.116.84 - - [19/Sep/2025:00:34:34 -0600] "GET /imagenesAptusLegal/arochi/LogosArochi/MAR-127340.png HTTP/1.1" 200 158105 "-" "Mozilla/5.0"
43.155.27.244 - - [19/Sep/2025:00:41:45 -0600] "GET / HTTP/1.1" 200 3440 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
204.76.203.10 - - [19/Sep/2025:00:47:22 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
204.76.203.10 - - [19/Sep/2025:00:51:14 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
205.210.31.28 - - [19/Sep/2025:00:56:56 -0600] "GET / HTTP/1.1" 200 3421 "-" "Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity"
104.28.42.23 - - [19/Sep/2025:00:58:29 -0600] "GET /imagenesAptusLegal/arochi/LogosArochi/MAR-74038.gif HTTP/1.1" 200 13417 "-" "Mozilla/5.0"
185.244.104.2 - - [19/Sep/2025:01:00:38 -0600] "PROPFIND / HTTP/1.1" 405 4215 "http://3.22.251.217:443/" "-"
178.128.95.222 - - [19/Sep/2025:01:06:54 -0600] "GET / HTTP/1.0" 400 624 "-" "-"
178.128.95.222 - - [19/Sep/2025:01:07:01 -0600] "GET / HTTP/1.0" 400 624 "-" "-"
178.128.95.222 - - [19/Sep/2025:01:07:08 -0600] "GET / HTTP/1.0" 400 624 "-" "-"
136.143.176.60 - - [19/Sep/2025:01:09:36 -0600] "GET /PCI-test/trademarks.csv HTTP/1.1" 200 36737933 "-" "Zoho_Analytics"
136.143.177.62 - - [19/Sep/2025:01:20:01 -0600] "GET /PCI-test/trademarks.csv HTTP/1.1" 200 36737933 "-" "Zoho_Analytics"
69.171.230.5 - - [19/Sep/2025:01:22:21 -0600] "GET /robots.txt HTTP/1.1" 404 4269 "-" "facebookexternalhit/1.1 (+http://www.facebook.com/externalhit_uatext.php)"
185.244.104.2 - - [19/Sep/2025:01:22:21 -0600] "PROPFIND / HTTP/1.1" 405 4215 "http://3.22.251.217:443/" "-"
204.76.203.10 - - [19/Sep/2025:01:26:31 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
204.76.203.10 - - [19/Sep/2025:01:35:16 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
204.76.203.10 - - [19/Sep/2025:01:40:12 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
204.76.203.10 - - [19/Sep/2025:01:46:01 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
165.227.100.212 - - [19/Sep/2025:01:48:29 -0600] "GET / HTTP/1.0" 400 624 "-" "-"
165.227.100.212 - - [19/Sep/2025:01:51:41 -0600] "GET /robots.txt HTTP/1.0" 404 454 "-" "xfa1"
20.65.178.1 - - [19/Sep/2025:01:54:20 -0600] "GET / HTTP/1.1" 200 3421 "-" "Mozilla/5.0 zgrab/0.x"
204.76.203.10 - - [19/Sep/2025:01:58:27 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
109.105.209.24 - - [19/Sep/2025:02:17:23 -0600] "GET / HTTP/1.1" 200 6585 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKtory)) in Unknown on line 0
Sep 19 00:39:02 ip-172-31-29-215 sessionclean[3759732]: PHP Warning:  Module 'gettext' already loaded in Unknown on line 0
Sep 19 00:39:02 ip-172-31-29-215 sessionclean[3759732]: PHP Warning:  Module 'mbstring' already loaded in Unknown on line 0
Sep 19 00:39:02 ip-172-31-29-215 sessionclean[3759732]: PHP Warning:  Module 'sqlsrv' already loaded in Unknown on line 0
Sep 19 00:39:02 ip-172-31-29-215 systemd[1]: phpsessionclean.service: Succeeded.
Sep 19 00:39:02 ip-172-31-29-215 systemd[1]: Finished Clean php session files.
Sep 19 00:40:01 ip-172-31-29-215 CRON[3759772]: (smmsp) CMD (test -x /etc/init.d/sendmail && test -x /usr/share/sendmail/sendmail && test -x /usr/lib/sm.bin/sendmail && /usr/share/sendmail/sendmail cron-msp)
Sep 19 00:44:02 ip-172-31-29-215 snapd[3235390]: storehelpers.go:916: cannot refresh: snap has no updates available: "amazon-ssm-agent", "core18", "core20", "core22", "lxd", "snapd"
Sep 19 00:55:27 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 00:55:27.9976 WARN EC2RoleProvider Failed to connect to Systems Manager with instance profile role credentials. Err: retrieved credentials failed to report to ssm. Error: EC2RoleRequestError: no EC2 instance role found
Sep 19 00:55:28 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 00:55:28.0372 ERROR EC2RoleProvider Failed to connect to Systems Manager with SSM role credentials. error calling RequestManagedInstanceRoleToken: AccessDeniedException: Systems Manager's instance management role is not configured for account: 227937466084
Sep 19 00:55:28 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: #011status code: 400, request id: 7f2f10ec-7447-444d-a3e0-cd74bb08253e
Sep 19 01:00:01 ip-172-31-29-215 CRON[3759803]: (smmsp) CMD (test -x /etc/init.d/sendmail && test -x /usr/share/sendmail/sendmail && test -x /usr/lib/sm.bin/sendmail && /usr/share/sendmail/sendmail cron-msp)
Sep 19 01:09:01 ip-172-31-29-215 CRON[3759829]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
Sep 19 01:09:02 ip-172-31-29-215 systemd[1]: Starting Clean php session files...
Sep 19 01:09:02 ip-172-31-29-215 sessionclean[3759842]: Cannot load Xdebug - it was already loaded
Sep 19 01:09:02 ip-172-31-29-215 sessionclean[3759842]: PHP Warning:  PHP Startup: Unable to load dynamic library 'pdo_sqlsrv.so' (tried: /usr/lib/php/20190902/pdo_sqlsrv.so (/usr/lib/php/20190902/pdo_sqlsrv.so: undefined symbol: php_pdo_unregister_driver), /usr/lib/php/20190902/pdo_sqlsrv.so.so (/usr/lib/php/20190902/pdo_sqlsrv.so.so: cannot open shared object file: No such file or directory)) in Unknown on line 0
Sep 19 01:09:02 ip-172-31-29-215 sessionclean[3759842]: PHP Warning:  Module 'gettext' already loaded in Unknown on line 0
Sep 19 01:09:02 ip-172-31-29-215 sessionclean[3759842]: PHP Warning:  Module 'mbstring' already loaded in Unknown on line 0
Sep 19 01:09:02 ip-172-31-29-215 sessionclean[3759842]: PHP Warning:  Module 'sqlsrv' already loaded in Unknown on line 0
Sep 19 01:09:02 ip-172-31-29-215 systemd[1]: phpsessionclean.service: Succeeded.
Sep 19 01:09:02 ip-172-31-29-215 systemd[1]: Finished Clean php session files.
Sep 19 01:17:01 ip-172-31-29-215 CRON[3759883]: (root) CMD (   cd / && run-parts --report /etc/cron.hourly)
Sep 19 01:20:01 ip-172-31-29-215 CRON[3759889]: (smmsp) CMD (test -x /etc/init.d/sendmail && test -x /usr/share/sendmail/sendmail && test -x /usr/lib/sm.bin/sendmail && /usr/share/sendmail/sendmail cron-msp)
Sep 19 01:24:20 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 01:24:20.0393 WARN EC2RoleProvider Failed to connect to Systems Manager with instance profile role credentials. Err: retrieved credentials failed to report to ssm. Error: EC2RoleRequestError: no EC2 instance role found
Sep 19 01:24:20 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 01:24:20.0847 ERROR EC2RoleProvider Failed to connect to Systems Manager with SSM role credentials. error calling RequestManagedInstanc72-31-29-215 CRON[3760086]: (root) CMD (   cd / && run-parts --report /etc/cron.hourly)
Sep 19 02:20:01 ip-172-31-29-215 CRON[3760092]: (smmsp) CMD (test -x /etc/init.d/sendmail && test -x /usr/share/sendmail/sendmail && test -x /usr/lib/sm.bin/sendmail && /usr/share/sendmail/sendmail cron-msp)
Sep 19 02:22:52 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 02:22:52.2289 WARN EC2RoleProvider Failed to connect to Systems Manager with instance profile role credentials. Err: retrieved credentials failed to report to ssm. Error: EC2RoleRequestError: no EC2 instance role found
Sep 19 02:22:52 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 02:22:52.2716 ERROR EC2RoleProvider Failed to connect to Systems Manager with SSM role credentials. error calling RequestManagedInstanceRoleToken: AccessDeniedException: Systems Manager's instance management role is not configured for account: 227937466084
Sep 19 02:22:52 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: #011status code: 400, request id: 3a79f123-5dc6-4076-9d79-4bf1ce55ad5e
Sep 19 02:39:01 ip-172-31-29-215 CRON[3760121]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
Sep 19 02:39:02 ip-172-31-29-215 systemd[1]: Starting Clean php session files...
Sep 19 02:39:02 ip-172-31-29-215 sessionclean[3760134]: Cannot load Xdebug - it was already loaded
Sep 19 02:39:02 ip-172-31-29-215 sessionclean[3760134]: PHP Warning:  PHP Startup: Unable to load dynamic library 'pdo_sqlsrv.so' (tried: /usr/lib/php/20190902/pdo_sqlsrv.so (/usr/lib/php/20190902/pdo_sqlsrv.so: undefined symbol: php_pdo_unregister_driver), /usr/lib/php/20190902/pdo_sqlsrv.so.so (/usr/lib/php/20190902/pdo_sqlsrv.so.so: cannot open shared object file: No such file or directory)) in Unknown on line 0
Sep 19 02:39:02 ip-172-31-29-215 sessionclean[3760134]: PHP Warning:  Module 'gettext' already loaded in Unknown on line 0
Sep 19 02:39:02 ip-172-31-29-215 sessionclean[3760134]: PHP Warning:  Module 'mbstring' already loaded in Unknown on line 0
Sep 19 02:39:02 ip-172-31-29-215 sessionclean[3760134]: PHP Warning:  Module 'sqlsrv' already loaded in Unknown on line 0
Sep 19 02:39:02 ip-172-31-29-215 systemd[1]: phpsessionclean.service: Succeeded.
Sep 19 02:39:02 ip-172-31-29-215 systemd[1]: Finished Clean php session files.
Sep 19 02:40:01 ip-172-31-29-215 CRON[3760175]: (smmsp) CMD (test -x /etc/init.d/sendmail && test -x /usr/share/sendmail/sendmail && test -x /usr/lib/sm.bin/sendmail && /usr/share/sendmail/sendmail cron-msp)
Sep 19 02:48:34 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 02:48:34.2736 WARN EC2RoleProvider Failed to connect to Systems Manager with instance profile role credentials. Err: retrieved credentials failed to report to ssm. Error: EC2RoleRequestError: no EC2 instance role found
Sep 19 02:48:34 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: 2025-09-19 02:48:34.3157 ERROR EC2RoleProvider Failed to connect to Systems Manager with SSM role credentials. error calling RequestManagedInstanceRoleToken: AccessDeniedException: Systems Manager's instance management role is not configured for account: 227937466084
Sep 19 02:48:34 ip-172-31-29-215 amazon-ssm-agent.amazon-ssm-agent[3122439]: #011status code: 400, request id: 288c7121-2d89-4a3e-ab30-7abdb82091e0
Sep 19 03:00:01 ip-172-31-29-215 CRON[3760206]: (smmsp) CMD (test -x /etc/init.d/sendmail && test -x /usr/share/sendmail/sendmail && test -x /usr/lib/sm.bin/sendmail && /usr/share/sendmail/sendmail cron-msp)
Sep 19 03:09:01 ip-172-31-29-215 CRON[3760234]: (root) CMD (  [ -x /usr/lib/php/sessionclean ] && if [ ! -d /run/systemd/system ]; then /usr/lib/php/sessionclean; fi)
Sep 19 03:09:02 ip-172-31-29-215 systemd[1]: Starting Clean php session files...
Sep 19 03:09:02 ip-172-31-29-215 sessionclean[3760247]: Cannot load Xdebug - it was already loaded
Sep 19 03:09:02 ip-172-31-29-215 sessionclean[3760247]: PHP Warning:  PHP Startup: Unable to load dynamic library 'pdo_sqlsrv.so' (tried: /usrit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36"
136.143.176.64 - - [19/Sep/2025:02:20:06 -0600] "GET /PCI-test/trademarks.csv HTTP/1.1" 200 36737933 "-" "Zoho_Analytics"
172.102.222.176 - - [19/Sep/2025:02:23:56 -0600] "GET /.env HTTP/1.1" 404 4231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.140 Safari/537.36"
172.102.222.176 - - [19/Sep/2025:02:23:57 -0600] "POST / HTTP/1.1" 200 7260 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.140 Safari/537.36"
185.244.104.2 - - [19/Sep/2025:02:24:43 -0600] "PROPFIND / HTTP/1.1" 405 4215 "http://3.22.251.217:443/" "-"
204.76.203.10 - - [19/Sep/2025:02:34:44 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
216.218.206.66 - - [19/Sep/2025:02:36:43 -0600] "GET / HTTP/1.1" 200 6585 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
185.244.104.2 - - [19/Sep/2025:02:36:44 -0600] "PROPFIND / HTTP/1.1" 405 4215 "http://3.22.251.217:443/" "-"
204.76.203.10 - - [19/Sep/2025:02:38:23 -0600] "GET /cgi-bin/luci/;stok=/locale HTTP/1.1" 404 435 "-" "-"
216.218.206.66 - - [19/Sep/2025:02:48:15 -0600] "GET /favicon.ico HTTP/1.1" 404 3542 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A"
216.218.206.66 - - [19/Sep/2025:02:49:01 -0600] "GET / HTTP/1.1" 200 7157 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
143.92.32.21 - - [19/Sep/2025:02:55:44 -0600] "GET /e/data/ecmseditor/infoeditor/plugins/smiley/images/angel_smile.png HTTP/1.1" 404 493 "http://aptuslegal.app" "Googlebot/2.1 (+http://www.google.com/bot.html)"
143.92.32.21 - - [19/Sep/2025:02:55:44 -0600] "GET /e/data/js/jscolor/hs.png HTTP/1.1" 404 492 "http://aptuslegal.app" "Sogou web spider/3.0(+http://www.sogou.com/docs/help/webmasters.htm#07\xa1\xe5)"
101.91.110.36 - - [19/Sep/2025:02:58:34 -0600] "\x16\x03\x01\x01.\x01" 400 488 "-" "-"
101.91.110.164 - - [19/Sep/2025:02:58:35 -0600] "GET / HTTP/1.1" 200 11173 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0"
101.91.110.161 - - [19/Sep/2025:02:58:44 -0600] "GET /favicon.ico HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11"
101.91.110.6 - - [19/Sep/2025:02:58:46 -0600] "GET /robots.txt HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11"
101.91.110.16 - - [19/Sep/2025:02:58:48 -0600] "GET /sitemap.xml HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11"
101.91.110.134 - - [19/Sep/2025:02:58:51 -0600] "GET /config.json HTTP/1.1" 404 437 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_0) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.56 Safari/535.11"
216.218.206.66 - - [19/Sep/2025:03:02:12 -0600] "GET /geoserver/web/ HTTP/1.1" 404 3542 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:83.0) Gecko/20100101 Firefox/83.0"
216.218.206.66 - - [19/Sep/2025:03:07:10 -0600] "GET /.git/config HTTP/1.1" 404 3542 "-" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36"
185.195.233.149 - - [19/Sep/2025:03:10:41 -0600] "GET /.git/config HTTP/1.1" 404 454 "-" "Mozilla/5.0 (compatible; Scanner/1.0)"
185.195.233.149 - - [19/Sep/2025:03:10:42 -0600] "GET /.git/config HTTP/1.1" 404 4147 "-" "Mozilla/5.0 (compatible; Scanner/1.0)"
43.130.16.212 - - [19/Sep/2025:03:11:49 -0600] "GET / HTTP/1.1" 200 3440 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1"
124.156.187.113 - - [19/Sep/2025:03:12:36 -0600] "HEAD /Core/Skin/Login.aspx HTTP/1.1" 404 140 "-" "Mozil
 * Introducing Expanded Security Maintenance for Applications.
   Receive updates to over 25,000 software packages with your
   Ubuntu Pro subscription. Free for personal use.

     https://ubuntu.com/aws/pro